Privacy Policy
Privacy Policy
1. Data Protection Overview
General Information
The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data refers to any data that can identify you personally. For detailed information on data protection, please refer to our privacy policy below.
Data Collection on This Website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. The operator’s contact details can be found in the “Notice Regarding the Responsible Party” section of this privacy policy.
How do we collect your data?
Your data is collected when you provide it to us. For example, this can include data you enter into a contact form. Other data is automatically collected or with your consent when you visit the website by our IT systems. This primarily includes technical data (e.g., browser, operating system, or time of page access). The collection of this data occurs automatically as soon as you enter the website.
How do we collect your data?
Part of the data is collected to ensure the website operates error-free. Other data may be used to analyze user behavior. If contracts are entered into or initiated through the website, the transmitted data is also processed for contract offers, orders, or other inquiries.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time and free of charge. You also have the right to request the correction or deletion of your data. If you have given consent for data processing, you can withdraw it at any time for future use. Additionally, you have the right to request the restriction of processing your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority. For these and other questions regarding data protection, you can contact us at any time.
Analysis Tools and Third-Party Tools
When visiting this website, your browsing behavior may be statistically analyzed. This occurs primarily using analysis programs. Detailed information on these programs can be found in the following privacy policy.
2. Hosting
External Hosting
This website is hosted externally. Personal data collected on this website is stored on the servers of the hosting provider(s). This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated via a website. External hosting is carried out to fulfill our contractual obligations towards potential and existing customers (Art. 6 (1)(b) GDPR) and in the interest of secure, fast, and efficient provision of our online services by a professional provider (Art. 6 (1)(f) GDPR). Where consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's device (e.g., device fingerprinting) under the TTDSG. The consent can be withdrawn at any time.
Our host(s) will process your data only to the extent necessary to fulfill their performance obligations and follow our instructions regarding this data.
Contractual Data Processing
We have entered into a contract for data processing (DPA) with the above-mentioned service provider. This legally required contract ensures that the provider processes the personal data of website visitors only according to our instructions and in compliance with the GDPR.
3. General Information and Mandatory Notices
Data Protection
We have entered into a contract for data processing (DPA) with the above-mentioned service provider. This legally required contract ensures that the provider processes the personal data of website visitors only according to our instructions and in compliance with the GDPR.
Notice Regarding the Responsible Party
The responsible party for data processing on this website is:
Fraem GmbH
Landsberger Straße 71
80339 Munich
Phone: 089 215383750
Email: info@fraem-creatives.com
The responsible party is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Storage Duration
Unless a more specific storage period is mentioned in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you make a legitimate request for deletion or withdraw your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, the deletion will occur after these reasons cease to apply.
General Information on the Legal Basis for Data Processing
If you have consented to data processing, we process your personal data on the basis of Art. 6 (1)(a) GDPR or Art. 9 (2)(a) GDPR if special categories of data according to Art. 9 (1) GDPR are processed. In the case of explicit consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49 (1)(a) GDPR. If you have consented to the storage of cookies or the access to information in your end device (e.g., via device fingerprinting), the data processing is additionally based on § 25 (1) TTDSG. The consent can be withdrawn at any time.
If your data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 (1)(b) GDPR. Furthermore, we process your data if this is necessary for the fulfillment of a legal obligation on the basis of Art. 6 (1)(c) GDPR. Data processing can also be based on our legitimate interest according to Art. 6 (1)(f) GDPR.
Further information on the applicable legal basis in each individual case can be found in the following sections of this privacy policy.
Notice on Data Transfers to Third Countries Without Adequate Data Protection and to U.S. Companies Not Certified Under the DPF
We use tools from companies based in third countries that do not offer an adequate level of data protection as defined by EU standards, as well as U.S.-based tools whose providers are not certified under the EU-U.S. Data Privacy Framework (DPF). If these tools are active, your personal data may be transferred to and processed in these countries. We emphasize that such countries may not guarantee a data protection level comparable to that of the EU.
Please note that the United States is generally considered a third country with an adequate level of data protection comparable to the EU. Data transfers to the U.S. are permissible if the recipient is certified under the "EU-U.S. Data Privacy Framework" (DPF) or offers additional appropriate safeguards. Information about transfers to third countries, including the data recipients, can be found in this privacy policy.
Recipients of Personal Data
As part of our business activities, we collaborate with various external entities. This may involve the transfer of personal data to these external parties. We transfer personal data only when it is necessary for contract fulfillment, when we are legally obliged to do so (e.g., sharing data with tax authorities), when we have a legitimate interest under Art. 6 (1)(f) GDPR, or when other legal bases permit data sharing. When engaging processors, we share customer personal data only based on a valid contract for data processing. For joint processing, a joint processing agreement is concluded.
Right to Object to Data Collection in Special Cases and to Direct Advertising (Art. 21 GDPR)
Many data processing operations are only possible with your explicit consent. You can withdraw any consent you have already given at any time. The legality of the data processing carried out prior to the withdrawal remains unaffected.
Right to Lodge a Complaint with the Competent Supervisory Authority
IF THE DATA PROCESSING IS BASED ON ART. 6 (1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS FOR THE PROCESSING CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OUTWEIGH YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION UNDER ART. 21 (1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING AT ANY TIME; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS ASSOCIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING (OBJECTION UNDER ART. 21 (2) GDPR).
Right to Data Portability
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the location of the alleged violation. The right to lodge a complaint is without prejudice to other administrative or judicial remedies.
Right to Information, Correction, and Deletion
You have the right to have data that we process on the basis of your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a commonly used, machine-readable format. If you request the direct transfer of data to another controller, this will only be done insofar as it is technically feasible.
Right to Restrict Processing
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin, recipients, and the purpose of data processing, as well as, if applicable, the right to correction or deletion of this data. For this purpose, and for further questions regarding personal data, you can contact us at any time.
SSL or TLS Encryption
You have the right to request the restriction of the processing of your personal data. You can contact us at any time regarding this right. The right to restriction of processing applies in the following cases:
If you contest the accuracy of your personal data stored by us, we usually need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data but you require it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
If you have filed an objection under Art. 21 (1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data – apart from being stored – may only be processed with your consent or for the assertion, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.
Objection to Advertising Emails
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the change in the address line of the browser from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
4. Data Collection on This Website
Cookies
Our websites use “cookies.” Cookies are small data packets that do not cause damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit. Persistent cookies remain on your device until you delete them yourself or your web browser automatically deletes them.
Cookies can either come from us (first-party cookies) or from third-party companies (third-party cookies). Third-party cookies enable the integration of certain services provided by third parties within websites (e.g., cookies for payment processing services).
Cookies serve various purposes. Many cookies are technically necessary, as certain website functions would not work without them (e.g., shopping cart functionality or displaying videos). Other cookies may be used to analyze user behavior or for advertising purposes.
Cookies required to carry out electronic communication, to provide certain functions you request (e.g., shopping cart functions), or to optimize the website (e.g., cookies for measuring web audience) are stored based on Art. 6 (1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent has been requested for the storage of cookies and comparable recognition technologies, processing is based solely on this consent (Art. 6 (1)(a) GDPR and § 25 (1) TTDSG); the consent can be withdrawn at any time.
You can configure your browser to notify you when cookies are set, allow cookies only in specific cases, exclude cookies for certain cases or generally, and activate the automatic deletion of cookies when closing the browser. If cookies are disabled, the functionality of this website may be limited.
You can find out which cookies and services are used on this website in this privacy policy.
Server Log Files
The provider of this website automatically collects and stores information in server log files, which your browser automatically transmits to us. This information includes:
Browser type and version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of server request
IP address
These data are not merged with other data sources.
The collection of this data is based on Art. 6 (1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of the website – for this purpose, the server log files must be recorded.
Contact Form
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not share this data without your consent.
The processing of this data is based on Art. 6 (1)(b) GDPR, if your request is related to the fulfillment of a contract or is required to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively processing inquiries addressed to us (Art. 6 (1)(f) GDPR) or your consent (Art. 6 (1)(a) GDPR) if this has been requested; the consent can be withdrawn at any time.
The data you enter in the contact form will remain with us until you request deletion, withdraw your consent to storage, or the purpose for data storage no longer applies (e.g., after processing your request is completed). Mandatory legal provisions – especially retention periods – remain unaffected.
Inquiry by Email, Phone, or Fax
If you contact us by email, phone, or fax, your inquiry, including all resulting personal data (name, inquiry), will be stored and processed by us for the purpose of handling your request. We will not share this data without your consent.
The processing of this data is based on Art. 6 (1)(b) GDPR if your request is related to the fulfillment of a contract or is required to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively processing inquiries addressed to us (Art. 6 (1)(f) GDPR) or your consent (Art. 6 (1)(a) GDPR) if this has been requested; the consent can be withdrawn at any time.
The data you send us via contact inquiries will remain with us until you request deletion, withdraw your consent to storage, or the purpose for data storage no longer applies (e.g., after your request is fully processed). Mandatory legal provisions – especially statutory retention periods – remain unaffected.
5. Social Media
Our website integrates elements of the social network Facebook. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. According to Facebook, the data collected is also transferred to the United States and other third countries.
An overview of Facebook's social media elements can be found here: https://developers.facebook.com/docs/plugins/?locale=en_EN.
When the social media element is active, a direct connection between your device and the Facebook server is established. Facebook thereby receives the information that you have visited this website with your IP address. If you click the Facebook “Like” button while logged into your Facebook account, you can link the content of this website to your Facebook profile. This allows Facebook to associate your visit to this website with your user account. We point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Facebook. For more information, see Facebook's privacy policy at: https://en-gb.facebook.com/privacy/explanation.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
To the extent that personal data is collected on our website using the tool described here and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited to the collection of the data and its forwarding to Facebook. The processing by Facebook after the transfer is not part of the joint responsibility. Our shared responsibilities have been outlined in an agreement on joint processing. The agreement text can be found here: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing privacy information when using the Facebook tool and for the secure integration of the tool on our website. For the data security of Facebook products, Facebook is responsible. Data subject rights (e.g., access requests) regarding data processed by Facebook can be exercised directly with Facebook. If you assert the data subject rights with us, we are obligated to forward them to Facebook.
Data transmission to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://en-gb.facebook.com/help/566994660333381, and https://www.facebook.com/policy.php.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA to ensure compliance with European data protection standards for data processing in the USA. Each company certified under the DPF commits to adhering to these data protection standards. More information is available at: https://www.dataprivacyframework.gov/participant/4452.
This website incorporates functions of the Instagram service, provided by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.
When the social media element is active, a direct connection between your device and Instagram's server is established. Instagram thereby receives information about your visit to this website.
If you are logged into your Instagram account, you can click the Instagram button to link the content of this website to your Instagram profile. This enables Instagram to associate your visit to this website with your user account. We point out that we, as the website provider, do not have knowledge of the content of the data transmitted or its use by Instagram.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
To the extent that personal data is collected on our website using the tool described here and forwarded to Instagram, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited to the collection of the data and its forwarding to Instagram. Processing by Instagram after the transfer is not part of the joint responsibility.
The data transmission to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://privacycenter.instagram.com/policy, and https://en-gb.facebook.com/help/566994660333381.
More information on data processing by Instagram can be found in their privacy policy: https://privacycenter.instagram.com/policy/.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). This certification ensures compliance with European data protection standards for data processing in the USA. More information is available at: https://www.dataprivacyframework.gov/participant/4452.
This website incorporates elements from the Pinterest social network, operated by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.
When you access a page containing such an element, your browser establishes a direct connection to Pinterest's servers. This social media element transmits log data to Pinterest's server in the United States. This log data may include your IP address, the address of the websites you visit that also contain Pinterest functions, browser type and settings, date and time of the request, how you use Pinterest, and cookies.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
For more information about the purpose, scope, and further processing and use of the data by Pinterest, as well as your rights and options for protecting your privacy, please refer to Pinterest's privacy policy: https://policy.pinterest.com/en/privacy-policy.
6. Newsletter
Newsletter Data
If you wish to receive the newsletter offered on this website, we require an email address and information that allows us to verify that you are the owner of the provided email address and that you agree to receive the newsletter. No further data will be collected or will only be collected on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter signup form is based solely on your consent (Art. 6 (1)(a) GDPR). You can revoke your consent to the storage of the data, the email address, and its use for sending the newsletter at any time, for example, via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter or until the purpose for storing the data no longer applies (e.g., after the newsletter has been discontinued). Data stored for other purposes (e.g., email addresses for the member area) remain unaffected.
After you unsubscribe from the newsletter, your email address may be stored in a blacklist to prevent future mailings. The data from the blacklist is used solely for this purpose and is not merged with other data. This serves both your interest and our interest in complying with legal requirements for sending newsletters (legitimate interest under Art. 6 (1)(f) GDPR). Blacklist data is stored indefinitely. You may object to this storage if your interests outweigh our legitimate interest.7. Plugins and Tools
7. Plugins and Tools
YouTube
This website incorporates videos from the YouTube website. The operator of the website is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
When you visit one of our pages that includes a YouTube video, a connection to YouTube's servers is established. The YouTube server is informed about which of our pages you have visited.
YouTube may also store cookies on your device or use similar recognition technologies (e.g., device fingerprinting). This allows YouTube to collect information about visitors to this website. This information is used, among other things, to collect video statistics, improve user-friendliness, and prevent fraud.
If you are logged into your YouTube account, you enable YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.
The use of YouTube is in the interest of an attractive presentation of our online offerings. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Further information on the handling of user data can be found in YouTube's privacy policy at: https://policies.google.com/privacy?hl=en.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). This certification ensures compliance with European data protection standards for data processing in the USA. More information is available at: https://www.dataprivacyframework.gov/participant/5780.
Vimeo
This website uses plugins from the Vimeo video portal. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
When you visit one of our pages equipped with a Vimeo plugin, a connection to Vimeo's servers is established. The Vimeo server is informed about which of our pages you have visited. In addition, Vimeo obtains your IP address. This applies even if you are not logged into Vimeo or do not have a Vimeo account. The information collected by Vimeo is transmitted to Vimeo’s servers in the USA.
If you are logged into your Vimeo account, you enable Vimeo to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account.
Vimeo uses cookies or similar recognition technologies (e.g., device fingerprinting) to recognize website visitors.
The use of Vimeo is in the interest of an attractive presentation of our online offerings. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
The data transfer to the USA is based on the EU Commission's standard contractual clauses and, according to Vimeo, on “legitimate business interests.” Details can be found here: https://vimeo.com/privacy.
Google Maps
This website uses the Google Maps mapping service. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. With the help of this service, we can embed map material on our website.
To use Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission. If Google Maps is activated, Google may use Google Fonts to ensure a consistent display of fonts. When you access Google Maps, your browser loads the required web fonts into its browser cache to display texts and fonts correctly.
The use of Google Maps is in the interest of providing an appealing presentation of our online offerings and making the locations specified on our website easy to find. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Data transfer to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
More information on handling user data can be found in Google’s privacy policy at: https://policies.google.com/privacy?hl=en.
Spotify
This website integrates functions from the Spotify music service. The provider is Spotify AB, Birger Jarlsgatan 61, 113 56 Stockholm, Sweden. Spotify plugins are recognizable by the green logo on this website. An overview of Spotify plugins can be found at: https://developer.spotify.com.
When you visit this website, the plugin establishes a direct connection between your browser and Spotify’s server. Spotify receives the information that you visited this website with your IP address. If you click on the Spotify button while logged into your Spotify account, you can link the content of this website to your Spotify profile. This allows Spotify to associate your visit to this website with your user account.
We point out that Spotify uses Google Analytics during Spotify use, which means your usage data may also be transferred to Google. Google Analytics is a tool of the Google Group for analyzing user behavior with its headquarters in the USA. Spotify is solely responsible for this integration. We, as website operators, have no influence on this processing.
The storage and analysis of the data are based on Art. 6 (1)(f) GDPR. The website operator has a legitimate interest in an attractive and acoustically appealing design of their website. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Further information on the handling of user data can be found in Spotify’s privacy policy: https://www.spotify.com/legal/privacy-policy/.
If you do not want Spotify to associate your visit to this website with your Spotify user account, please log out of your Spotify user account.
Communication via WhatsApp
We offer you the opportunity to communicate with us via WhatsApp. The provider of this service is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
The use of WhatsApp is based on your voluntary consent under Art. 6 (1)(a) GDPR. During communication, data such as your phone number and the content you provide (e.g., text messages, images) may be collected. For more information, please refer to WhatsApp’s privacy policy: https://www.whatsapp.com/legal.
Typeform & LinkedIn
We use Typeform for creating and processing surveys and forms. The provider is TYPEFORM S.L., Carrer Bac de Roda, 163, 08018 Barcelona, Spain. Processing is based on your consent (Art. 6 (1)(a) GDPR).
Additionally, we use LinkedIn for marketing and analytics purposes. The provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. Data processing is carried out in accordance with LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy.
Google Tag Manager
This website uses Google Tag Manager, a tool for managing website tags. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager does not set cookies or collect personal data but serves to integrate and manage tools and scripts. Processing is based on Art. 6 (1)(f) GDPR.
Google Analytics & Google Ads
We use Google Analytics to analyze the use of our website. Google Ads supports us in serving targeted advertisements. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The use of these tools is based on your consent under Art. 6 (1)(a) GDPR. For more information, please refer to: https://policies.google.com/privacy.
Google Ads Remarketing & Google AdSense
Our website uses Google Ads Remarketing and Google AdSense to display relevant advertisements. The provider is Google Ireland Limited. These tools allow us to display targeted advertising based on your user behavior. Processing is based on your consent under Art. 6 (1)(a) GDPR.
Meta-Pixel (formerly Facebook Pixel)
We use the Meta-Pixel to track user behavior after they are redirected to our website by clicking on a Facebook or Instagram ad. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Processing is based on your consent under Art. 6 (1)(a) GDPR. For more information, please refer to: https://www.facebook.com/about/privacy.
MailJet
We use MailJet to send newsletters. The provider is MailJet SAS, 13-13bis, Rue de l’Aubrac, 75012 Paris, France. MailJet processes data on our behalf and in accordance with our instructions. Processing is based on a Data Processing Agreement (DPA) and Art. 6 (1)(a) GDPR. For more information, please refer to: https://www.mailjet.com/security-privacy/.
Check out our socials!
And learn more about what we do and how we work
Check out our socials!
1. Data Protection Overview
General Information
The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data refers to any data that can identify you personally. For detailed information on data protection, please refer to our privacy policy below.
Data Collection on This Website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. The operator’s contact details can be found in the “Notice Regarding the Responsible Party” section of this privacy policy.
How do we collect your data?
Your data is collected when you provide it to us. For example, this can include data you enter into a contact form. Other data is automatically collected or with your consent when you visit the website by our IT systems. This primarily includes technical data (e.g., browser, operating system, or time of page access). The collection of this data occurs automatically as soon as you enter the website.
How do we collect your data?
Part of the data is collected to ensure the website operates error-free. Other data may be used to analyze user behavior. If contracts are entered into or initiated through the website, the transmitted data is also processed for contract offers, orders, or other inquiries.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time and free of charge. You also have the right to request the correction or deletion of your data. If you have given consent for data processing, you can withdraw it at any time for future use. Additionally, you have the right to request the restriction of processing your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority. For these and other questions regarding data protection, you can contact us at any time.
Analysis Tools and Third-Party Tools
When visiting this website, your browsing behavior may be statistically analyzed. This occurs primarily using analysis programs. Detailed information on these programs can be found in the following privacy policy.
2. Hosting
External Hosting
This website is hosted externally. Personal data collected on this website is stored on the servers of the hosting provider(s). This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated via a website. External hosting is carried out to fulfill our contractual obligations towards potential and existing customers (Art. 6 (1)(b) GDPR) and in the interest of secure, fast, and efficient provision of our online services by a professional provider (Art. 6 (1)(f) GDPR). Where consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's device (e.g., device fingerprinting) under the TTDSG. The consent can be withdrawn at any time.
Our host(s) will process your data only to the extent necessary to fulfill their performance obligations and follow our instructions regarding this data.
Contractual Data Processing
We have entered into a contract for data processing (DPA) with the above-mentioned service provider. This legally required contract ensures that the provider processes the personal data of website visitors only according to our instructions and in compliance with the GDPR.
3. General Information and Mandatory Notices
Data Protection
We have entered into a contract for data processing (DPA) with the above-mentioned service provider. This legally required contract ensures that the provider processes the personal data of website visitors only according to our instructions and in compliance with the GDPR.
Notice Regarding the Responsible Party
The responsible party for data processing on this website is:
Fraem GmbH
Landsberger Straße 71
80339 Munich
Phone: 089 215383750
Email: info@fraem-creatives.com
The responsible party is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Storage Duration
Unless a more specific storage period is mentioned in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you make a legitimate request for deletion or withdraw your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, the deletion will occur after these reasons cease to apply.
General Information on the Legal Basis for Data Processing
If you have consented to data processing, we process your personal data on the basis of Art. 6 (1)(a) GDPR or Art. 9 (2)(a) GDPR if special categories of data according to Art. 9 (1) GDPR are processed. In the case of explicit consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49 (1)(a) GDPR. If you have consented to the storage of cookies or the access to information in your end device (e.g., via device fingerprinting), the data processing is additionally based on § 25 (1) TTDSG. The consent can be withdrawn at any time.
If your data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 (1)(b) GDPR. Furthermore, we process your data if this is necessary for the fulfillment of a legal obligation on the basis of Art. 6 (1)(c) GDPR. Data processing can also be based on our legitimate interest according to Art. 6 (1)(f) GDPR.
Further information on the applicable legal basis in each individual case can be found in the following sections of this privacy policy.
Notice on Data Transfers to Third Countries Without Adequate Data Protection and to U.S. Companies Not Certified Under the DPF
We use tools from companies based in third countries that do not offer an adequate level of data protection as defined by EU standards, as well as U.S.-based tools whose providers are not certified under the EU-U.S. Data Privacy Framework (DPF). If these tools are active, your personal data may be transferred to and processed in these countries. We emphasize that such countries may not guarantee a data protection level comparable to that of the EU.
Please note that the United States is generally considered a third country with an adequate level of data protection comparable to the EU. Data transfers to the U.S. are permissible if the recipient is certified under the "EU-U.S. Data Privacy Framework" (DPF) or offers additional appropriate safeguards. Information about transfers to third countries, including the data recipients, can be found in this privacy policy.
Recipients of Personal Data
As part of our business activities, we collaborate with various external entities. This may involve the transfer of personal data to these external parties. We transfer personal data only when it is necessary for contract fulfillment, when we are legally obliged to do so (e.g., sharing data with tax authorities), when we have a legitimate interest under Art. 6 (1)(f) GDPR, or when other legal bases permit data sharing. When engaging processors, we share customer personal data only based on a valid contract for data processing. For joint processing, a joint processing agreement is concluded.
Right to Object to Data Collection in Special Cases and to Direct Advertising (Art. 21 GDPR)
Many data processing operations are only possible with your explicit consent. You can withdraw any consent you have already given at any time. The legality of the data processing carried out prior to the withdrawal remains unaffected.
Right to Lodge a Complaint with the Competent Supervisory Authority
IF THE DATA PROCESSING IS BASED ON ART. 6 (1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS FOR THE PROCESSING CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OUTWEIGH YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION UNDER ART. 21 (1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING AT ANY TIME; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS ASSOCIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING (OBJECTION UNDER ART. 21 (2) GDPR).
Right to Data Portability
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the location of the alleged violation. The right to lodge a complaint is without prejudice to other administrative or judicial remedies.
Right to Information, Correction, and Deletion
You have the right to have data that we process on the basis of your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a commonly used, machine-readable format. If you request the direct transfer of data to another controller, this will only be done insofar as it is technically feasible.
Right to Restrict Processing
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin, recipients, and the purpose of data processing, as well as, if applicable, the right to correction or deletion of this data. For this purpose, and for further questions regarding personal data, you can contact us at any time.
SSL or TLS Encryption
You have the right to request the restriction of the processing of your personal data. You can contact us at any time regarding this right. The right to restriction of processing applies in the following cases:
If you contest the accuracy of your personal data stored by us, we usually need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data but you require it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
If you have filed an objection under Art. 21 (1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data – apart from being stored – may only be processed with your consent or for the assertion, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.
Objection to Advertising Emails
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the change in the address line of the browser from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
4. Data Collection on This Website
Cookies
Our websites use “cookies.” Cookies are small data packets that do not cause damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit. Persistent cookies remain on your device until you delete them yourself or your web browser automatically deletes them.
Cookies can either come from us (first-party cookies) or from third-party companies (third-party cookies). Third-party cookies enable the integration of certain services provided by third parties within websites (e.g., cookies for payment processing services).
Cookies serve various purposes. Many cookies are technically necessary, as certain website functions would not work without them (e.g., shopping cart functionality or displaying videos). Other cookies may be used to analyze user behavior or for advertising purposes.
Cookies required to carry out electronic communication, to provide certain functions you request (e.g., shopping cart functions), or to optimize the website (e.g., cookies for measuring web audience) are stored based on Art. 6 (1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent has been requested for the storage of cookies and comparable recognition technologies, processing is based solely on this consent (Art. 6 (1)(a) GDPR and § 25 (1) TTDSG); the consent can be withdrawn at any time.
You can configure your browser to notify you when cookies are set, allow cookies only in specific cases, exclude cookies for certain cases or generally, and activate the automatic deletion of cookies when closing the browser. If cookies are disabled, the functionality of this website may be limited.
You can find out which cookies and services are used on this website in this privacy policy.
Server Log Files
The provider of this website automatically collects and stores information in server log files, which your browser automatically transmits to us. This information includes:
Browser type and version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of server request
IP address
These data are not merged with other data sources.
The collection of this data is based on Art. 6 (1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of the website – for this purpose, the server log files must be recorded.
Contact Form
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not share this data without your consent.
The processing of this data is based on Art. 6 (1)(b) GDPR, if your request is related to the fulfillment of a contract or is required to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively processing inquiries addressed to us (Art. 6 (1)(f) GDPR) or your consent (Art. 6 (1)(a) GDPR) if this has been requested; the consent can be withdrawn at any time.
The data you enter in the contact form will remain with us until you request deletion, withdraw your consent to storage, or the purpose for data storage no longer applies (e.g., after processing your request is completed). Mandatory legal provisions – especially retention periods – remain unaffected.
Inquiry by Email, Phone, or Fax
If you contact us by email, phone, or fax, your inquiry, including all resulting personal data (name, inquiry), will be stored and processed by us for the purpose of handling your request. We will not share this data without your consent.
The processing of this data is based on Art. 6 (1)(b) GDPR if your request is related to the fulfillment of a contract or is required to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively processing inquiries addressed to us (Art. 6 (1)(f) GDPR) or your consent (Art. 6 (1)(a) GDPR) if this has been requested; the consent can be withdrawn at any time.
The data you send us via contact inquiries will remain with us until you request deletion, withdraw your consent to storage, or the purpose for data storage no longer applies (e.g., after your request is fully processed). Mandatory legal provisions – especially statutory retention periods – remain unaffected.
5. Social Media
Our website integrates elements of the social network Facebook. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. According to Facebook, the data collected is also transferred to the United States and other third countries.
An overview of Facebook's social media elements can be found here: https://developers.facebook.com/docs/plugins/?locale=en_EN.
When the social media element is active, a direct connection between your device and the Facebook server is established. Facebook thereby receives the information that you have visited this website with your IP address. If you click the Facebook “Like” button while logged into your Facebook account, you can link the content of this website to your Facebook profile. This allows Facebook to associate your visit to this website with your user account. We point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Facebook. For more information, see Facebook's privacy policy at: https://en-gb.facebook.com/privacy/explanation.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
To the extent that personal data is collected on our website using the tool described here and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited to the collection of the data and its forwarding to Facebook. The processing by Facebook after the transfer is not part of the joint responsibility. Our shared responsibilities have been outlined in an agreement on joint processing. The agreement text can be found here: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing privacy information when using the Facebook tool and for the secure integration of the tool on our website. For the data security of Facebook products, Facebook is responsible. Data subject rights (e.g., access requests) regarding data processed by Facebook can be exercised directly with Facebook. If you assert the data subject rights with us, we are obligated to forward them to Facebook.
Data transmission to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://en-gb.facebook.com/help/566994660333381, and https://www.facebook.com/policy.php.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA to ensure compliance with European data protection standards for data processing in the USA. Each company certified under the DPF commits to adhering to these data protection standards. More information is available at: https://www.dataprivacyframework.gov/participant/4452.
This website incorporates functions of the Instagram service, provided by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.
When the social media element is active, a direct connection between your device and Instagram's server is established. Instagram thereby receives information about your visit to this website.
If you are logged into your Instagram account, you can click the Instagram button to link the content of this website to your Instagram profile. This enables Instagram to associate your visit to this website with your user account. We point out that we, as the website provider, do not have knowledge of the content of the data transmitted or its use by Instagram.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
To the extent that personal data is collected on our website using the tool described here and forwarded to Instagram, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited to the collection of the data and its forwarding to Instagram. Processing by Instagram after the transfer is not part of the joint responsibility.
The data transmission to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://privacycenter.instagram.com/policy, and https://en-gb.facebook.com/help/566994660333381.
More information on data processing by Instagram can be found in their privacy policy: https://privacycenter.instagram.com/policy/.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). This certification ensures compliance with European data protection standards for data processing in the USA. More information is available at: https://www.dataprivacyframework.gov/participant/4452.
This website incorporates elements from the Pinterest social network, operated by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.
When you access a page containing such an element, your browser establishes a direct connection to Pinterest's servers. This social media element transmits log data to Pinterest's server in the United States. This log data may include your IP address, the address of the websites you visit that also contain Pinterest functions, browser type and settings, date and time of the request, how you use Pinterest, and cookies.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
For more information about the purpose, scope, and further processing and use of the data by Pinterest, as well as your rights and options for protecting your privacy, please refer to Pinterest's privacy policy: https://policy.pinterest.com/en/privacy-policy.
6. Newsletter
Newsletter Data
If you wish to receive the newsletter offered on this website, we require an email address and information that allows us to verify that you are the owner of the provided email address and that you agree to receive the newsletter. No further data will be collected or will only be collected on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter signup form is based solely on your consent (Art. 6 (1)(a) GDPR). You can revoke your consent to the storage of the data, the email address, and its use for sending the newsletter at any time, for example, via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter or until the purpose for storing the data no longer applies (e.g., after the newsletter has been discontinued). Data stored for other purposes (e.g., email addresses for the member area) remain unaffected.
After you unsubscribe from the newsletter, your email address may be stored in a blacklist to prevent future mailings. The data from the blacklist is used solely for this purpose and is not merged with other data. This serves both your interest and our interest in complying with legal requirements for sending newsletters (legitimate interest under Art. 6 (1)(f) GDPR). Blacklist data is stored indefinitely. You may object to this storage if your interests outweigh our legitimate interest.7. Plugins and Tools
7. Plugins and Tools
YouTube
This website incorporates videos from the YouTube website. The operator of the website is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
When you visit one of our pages that includes a YouTube video, a connection to YouTube's servers is established. The YouTube server is informed about which of our pages you have visited.
YouTube may also store cookies on your device or use similar recognition technologies (e.g., device fingerprinting). This allows YouTube to collect information about visitors to this website. This information is used, among other things, to collect video statistics, improve user-friendliness, and prevent fraud.
If you are logged into your YouTube account, you enable YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.
The use of YouTube is in the interest of an attractive presentation of our online offerings. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Further information on the handling of user data can be found in YouTube's privacy policy at: https://policies.google.com/privacy?hl=en.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). This certification ensures compliance with European data protection standards for data processing in the USA. More information is available at: https://www.dataprivacyframework.gov/participant/5780.
Vimeo
This website uses plugins from the Vimeo video portal. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
When you visit one of our pages equipped with a Vimeo plugin, a connection to Vimeo's servers is established. The Vimeo server is informed about which of our pages you have visited. In addition, Vimeo obtains your IP address. This applies even if you are not logged into Vimeo or do not have a Vimeo account. The information collected by Vimeo is transmitted to Vimeo’s servers in the USA.
If you are logged into your Vimeo account, you enable Vimeo to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account.
Vimeo uses cookies or similar recognition technologies (e.g., device fingerprinting) to recognize website visitors.
The use of Vimeo is in the interest of an attractive presentation of our online offerings. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
The data transfer to the USA is based on the EU Commission's standard contractual clauses and, according to Vimeo, on “legitimate business interests.” Details can be found here: https://vimeo.com/privacy.
Google Maps
This website uses the Google Maps mapping service. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. With the help of this service, we can embed map material on our website.
To use Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission. If Google Maps is activated, Google may use Google Fonts to ensure a consistent display of fonts. When you access Google Maps, your browser loads the required web fonts into its browser cache to display texts and fonts correctly.
The use of Google Maps is in the interest of providing an appealing presentation of our online offerings and making the locations specified on our website easy to find. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Data transfer to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
More information on handling user data can be found in Google’s privacy policy at: https://policies.google.com/privacy?hl=en.
Spotify
This website integrates functions from the Spotify music service. The provider is Spotify AB, Birger Jarlsgatan 61, 113 56 Stockholm, Sweden. Spotify plugins are recognizable by the green logo on this website. An overview of Spotify plugins can be found at: https://developer.spotify.com.
When you visit this website, the plugin establishes a direct connection between your browser and Spotify’s server. Spotify receives the information that you visited this website with your IP address. If you click on the Spotify button while logged into your Spotify account, you can link the content of this website to your Spotify profile. This allows Spotify to associate your visit to this website with your user account.
We point out that Spotify uses Google Analytics during Spotify use, which means your usage data may also be transferred to Google. Google Analytics is a tool of the Google Group for analyzing user behavior with its headquarters in the USA. Spotify is solely responsible for this integration. We, as website operators, have no influence on this processing.
The storage and analysis of the data are based on Art. 6 (1)(f) GDPR. The website operator has a legitimate interest in an attractive and acoustically appealing design of their website. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Further information on the handling of user data can be found in Spotify’s privacy policy: https://www.spotify.com/legal/privacy-policy/.
If you do not want Spotify to associate your visit to this website with your Spotify user account, please log out of your Spotify user account.
Communication via WhatsApp
We offer you the opportunity to communicate with us via WhatsApp. The provider of this service is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
The use of WhatsApp is based on your voluntary consent under Art. 6 (1)(a) GDPR. During communication, data such as your phone number and the content you provide (e.g., text messages, images) may be collected. For more information, please refer to WhatsApp’s privacy policy: https://www.whatsapp.com/legal.
Typeform & LinkedIn
We use Typeform for creating and processing surveys and forms. The provider is TYPEFORM S.L., Carrer Bac de Roda, 163, 08018 Barcelona, Spain. Processing is based on your consent (Art. 6 (1)(a) GDPR).
Additionally, we use LinkedIn for marketing and analytics purposes. The provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. Data processing is carried out in accordance with LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy.
Google Tag Manager
This website uses Google Tag Manager, a tool for managing website tags. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager does not set cookies or collect personal data but serves to integrate and manage tools and scripts. Processing is based on Art. 6 (1)(f) GDPR.
Google Analytics & Google Ads
We use Google Analytics to analyze the use of our website. Google Ads supports us in serving targeted advertisements. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The use of these tools is based on your consent under Art. 6 (1)(a) GDPR. For more information, please refer to: https://policies.google.com/privacy.
Google Ads Remarketing & Google AdSense
Our website uses Google Ads Remarketing and Google AdSense to display relevant advertisements. The provider is Google Ireland Limited. These tools allow us to display targeted advertising based on your user behavior. Processing is based on your consent under Art. 6 (1)(a) GDPR.
Meta-Pixel (formerly Facebook Pixel)
We use the Meta-Pixel to track user behavior after they are redirected to our website by clicking on a Facebook or Instagram ad. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Processing is based on your consent under Art. 6 (1)(a) GDPR. For more information, please refer to: https://www.facebook.com/about/privacy.
MailJet
We use MailJet to send newsletters. The provider is MailJet SAS, 13-13bis, Rue de l’Aubrac, 75012 Paris, France. MailJet processes data on our behalf and in accordance with our instructions. Processing is based on a Data Processing Agreement (DPA) and Art. 6 (1)(a) GDPR. For more information, please refer to: https://www.mailjet.com/security-privacy/.
Privacy Policy
Check out our socials!
And learn more about what we do and how we work
1. Data Protection Overview
General Information
The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data refers to any data that can identify you personally. For detailed information on data protection, please refer to our privacy policy below.
Data Collection on This Website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. The operator’s contact details can be found in the “Notice Regarding the Responsible Party” section of this privacy policy.
How do we collect your data?
Your data is collected when you provide it to us. For example, this can include data you enter into a contact form. Other data is automatically collected or with your consent when you visit the website by our IT systems. This primarily includes technical data (e.g., browser, operating system, or time of page access). The collection of this data occurs automatically as soon as you enter the website.
How do we collect your data?
Part of the data is collected to ensure the website operates error-free. Other data may be used to analyze user behavior. If contracts are entered into or initiated through the website, the transmitted data is also processed for contract offers, orders, or other inquiries.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time and free of charge. You also have the right to request the correction or deletion of your data. If you have given consent for data processing, you can withdraw it at any time for future use. Additionally, you have the right to request the restriction of processing your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority. For these and other questions regarding data protection, you can contact us at any time.
Analysis Tools and Third-Party Tools
When visiting this website, your browsing behavior may be statistically analyzed. This occurs primarily using analysis programs. Detailed information on these programs can be found in the following privacy policy.
2. Hosting
External Hosting
This website is hosted externally. Personal data collected on this website is stored on the servers of the hosting provider(s). This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated via a website. External hosting is carried out to fulfill our contractual obligations towards potential and existing customers (Art. 6 (1)(b) GDPR) and in the interest of secure, fast, and efficient provision of our online services by a professional provider (Art. 6 (1)(f) GDPR). Where consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's device (e.g., device fingerprinting) under the TTDSG. The consent can be withdrawn at any time.
Our host(s) will process your data only to the extent necessary to fulfill their performance obligations and follow our instructions regarding this data.
Contractual Data Processing
We have entered into a contract for data processing (DPA) with the above-mentioned service provider. This legally required contract ensures that the provider processes the personal data of website visitors only according to our instructions and in compliance with the GDPR.
3. General Information and Mandatory Notices
Data Protection
We have entered into a contract for data processing (DPA) with the above-mentioned service provider. This legally required contract ensures that the provider processes the personal data of website visitors only according to our instructions and in compliance with the GDPR.
Notice Regarding the Responsible Party
The responsible party for data processing on this website is:
Fraem GmbH
Landsberger Straße 71
80339 Munich
Phone: 089 215383750
Email: info@fraem-creatives.com
The responsible party is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Storage Duration
Unless a more specific storage period is mentioned in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you make a legitimate request for deletion or withdraw your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, the deletion will occur after these reasons cease to apply.
General Information on the Legal Basis for Data Processing
If you have consented to data processing, we process your personal data on the basis of Art. 6 (1)(a) GDPR or Art. 9 (2)(a) GDPR if special categories of data according to Art. 9 (1) GDPR are processed. In the case of explicit consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49 (1)(a) GDPR. If you have consented to the storage of cookies or the access to information in your end device (e.g., via device fingerprinting), the data processing is additionally based on § 25 (1) TTDSG. The consent can be withdrawn at any time.
If your data is required for the fulfillment of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 (1)(b) GDPR. Furthermore, we process your data if this is necessary for the fulfillment of a legal obligation on the basis of Art. 6 (1)(c) GDPR. Data processing can also be based on our legitimate interest according to Art. 6 (1)(f) GDPR.
Further information on the applicable legal basis in each individual case can be found in the following sections of this privacy policy.
Notice on Data Transfers to Third Countries Without Adequate Data Protection and to U.S. Companies Not Certified Under the DPF
We use tools from companies based in third countries that do not offer an adequate level of data protection as defined by EU standards, as well as U.S.-based tools whose providers are not certified under the EU-U.S. Data Privacy Framework (DPF). If these tools are active, your personal data may be transferred to and processed in these countries. We emphasize that such countries may not guarantee a data protection level comparable to that of the EU.
Please note that the United States is generally considered a third country with an adequate level of data protection comparable to the EU. Data transfers to the U.S. are permissible if the recipient is certified under the "EU-U.S. Data Privacy Framework" (DPF) or offers additional appropriate safeguards. Information about transfers to third countries, including the data recipients, can be found in this privacy policy.
Recipients of Personal Data
As part of our business activities, we collaborate with various external entities. This may involve the transfer of personal data to these external parties. We transfer personal data only when it is necessary for contract fulfillment, when we are legally obliged to do so (e.g., sharing data with tax authorities), when we have a legitimate interest under Art. 6 (1)(f) GDPR, or when other legal bases permit data sharing. When engaging processors, we share customer personal data only based on a valid contract for data processing. For joint processing, a joint processing agreement is concluded.
Right to Object to Data Collection in Special Cases and to Direct Advertising (Art. 21 GDPR)
Many data processing operations are only possible with your explicit consent. You can withdraw any consent you have already given at any time. The legality of the data processing carried out prior to the withdrawal remains unaffected.
Right to Lodge a Complaint with the Competent Supervisory Authority
IF THE DATA PROCESSING IS BASED ON ART. 6 (1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS FOR THE PROCESSING CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OUTWEIGH YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION UNDER ART. 21 (1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING AT ANY TIME; THIS ALSO APPLIES TO PROFILING INSOFAR AS IT IS ASSOCIATED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR DIRECT ADVERTISING (OBJECTION UNDER ART. 21 (2) GDPR).
Right to Data Portability
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the location of the alleged violation. The right to lodge a complaint is without prejudice to other administrative or judicial remedies.
Right to Information, Correction, and Deletion
You have the right to have data that we process on the basis of your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a commonly used, machine-readable format. If you request the direct transfer of data to another controller, this will only be done insofar as it is technically feasible.
Right to Restrict Processing
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin, recipients, and the purpose of data processing, as well as, if applicable, the right to correction or deletion of this data. For this purpose, and for further questions regarding personal data, you can contact us at any time.
SSL or TLS Encryption
You have the right to request the restriction of the processing of your personal data. You can contact us at any time regarding this right. The right to restriction of processing applies in the following cases:
If you contest the accuracy of your personal data stored by us, we usually need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data but you require it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
If you have filed an objection under Art. 21 (1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data – apart from being stored – may only be processed with your consent or for the assertion, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.
Objection to Advertising Emails
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the change in the address line of the browser from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
4. Data Collection on This Website
Cookies
Our websites use “cookies.” Cookies are small data packets that do not cause damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit. Persistent cookies remain on your device until you delete them yourself or your web browser automatically deletes them.
Cookies can either come from us (first-party cookies) or from third-party companies (third-party cookies). Third-party cookies enable the integration of certain services provided by third parties within websites (e.g., cookies for payment processing services).
Cookies serve various purposes. Many cookies are technically necessary, as certain website functions would not work without them (e.g., shopping cart functionality or displaying videos). Other cookies may be used to analyze user behavior or for advertising purposes.
Cookies required to carry out electronic communication, to provide certain functions you request (e.g., shopping cart functions), or to optimize the website (e.g., cookies for measuring web audience) are stored based on Art. 6 (1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing necessary cookies for the technically error-free and optimized provision of its services. If consent has been requested for the storage of cookies and comparable recognition technologies, processing is based solely on this consent (Art. 6 (1)(a) GDPR and § 25 (1) TTDSG); the consent can be withdrawn at any time.
You can configure your browser to notify you when cookies are set, allow cookies only in specific cases, exclude cookies for certain cases or generally, and activate the automatic deletion of cookies when closing the browser. If cookies are disabled, the functionality of this website may be limited.
You can find out which cookies and services are used on this website in this privacy policy.
Server Log Files
The provider of this website automatically collects and stores information in server log files, which your browser automatically transmits to us. This information includes:
Browser type and version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of server request
IP address
These data are not merged with other data sources.
The collection of this data is based on Art. 6 (1)(f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of the website – for this purpose, the server log files must be recorded.
Contact Form
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provide, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not share this data without your consent.
The processing of this data is based on Art. 6 (1)(b) GDPR, if your request is related to the fulfillment of a contract or is required to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively processing inquiries addressed to us (Art. 6 (1)(f) GDPR) or your consent (Art. 6 (1)(a) GDPR) if this has been requested; the consent can be withdrawn at any time.
The data you enter in the contact form will remain with us until you request deletion, withdraw your consent to storage, or the purpose for data storage no longer applies (e.g., after processing your request is completed). Mandatory legal provisions – especially retention periods – remain unaffected.
Inquiry by Email, Phone, or Fax
If you contact us by email, phone, or fax, your inquiry, including all resulting personal data (name, inquiry), will be stored and processed by us for the purpose of handling your request. We will not share this data without your consent.
The processing of this data is based on Art. 6 (1)(b) GDPR if your request is related to the fulfillment of a contract or is required to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively processing inquiries addressed to us (Art. 6 (1)(f) GDPR) or your consent (Art. 6 (1)(a) GDPR) if this has been requested; the consent can be withdrawn at any time.
The data you send us via contact inquiries will remain with us until you request deletion, withdraw your consent to storage, or the purpose for data storage no longer applies (e.g., after your request is fully processed). Mandatory legal provisions – especially statutory retention periods – remain unaffected.
5. Social Media
Our website integrates elements of the social network Facebook. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. According to Facebook, the data collected is also transferred to the United States and other third countries.
An overview of Facebook's social media elements can be found here: https://developers.facebook.com/docs/plugins/?locale=en_EN.
When the social media element is active, a direct connection between your device and the Facebook server is established. Facebook thereby receives the information that you have visited this website with your IP address. If you click the Facebook “Like” button while logged into your Facebook account, you can link the content of this website to your Facebook profile. This allows Facebook to associate your visit to this website with your user account. We point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Facebook. For more information, see Facebook's privacy policy at: https://en-gb.facebook.com/privacy/explanation.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
To the extent that personal data is collected on our website using the tool described here and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited to the collection of the data and its forwarding to Facebook. The processing by Facebook after the transfer is not part of the joint responsibility. Our shared responsibilities have been outlined in an agreement on joint processing. The agreement text can be found here: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing privacy information when using the Facebook tool and for the secure integration of the tool on our website. For the data security of Facebook products, Facebook is responsible. Data subject rights (e.g., access requests) regarding data processed by Facebook can be exercised directly with Facebook. If you assert the data subject rights with us, we are obligated to forward them to Facebook.
Data transmission to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://en-gb.facebook.com/help/566994660333381, and https://www.facebook.com/policy.php.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA to ensure compliance with European data protection standards for data processing in the USA. Each company certified under the DPF commits to adhering to these data protection standards. More information is available at: https://www.dataprivacyframework.gov/participant/4452.
This website incorporates functions of the Instagram service, provided by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.
When the social media element is active, a direct connection between your device and Instagram's server is established. Instagram thereby receives information about your visit to this website.
If you are logged into your Instagram account, you can click the Instagram button to link the content of this website to your Instagram profile. This enables Instagram to associate your visit to this website with your user account. We point out that we, as the website provider, do not have knowledge of the content of the data transmitted or its use by Instagram.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
To the extent that personal data is collected on our website using the tool described here and forwarded to Instagram, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited to the collection of the data and its forwarding to Instagram. Processing by Instagram after the transfer is not part of the joint responsibility.
The data transmission to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://privacycenter.instagram.com/policy, and https://en-gb.facebook.com/help/566994660333381.
More information on data processing by Instagram can be found in their privacy policy: https://privacycenter.instagram.com/policy/.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). This certification ensures compliance with European data protection standards for data processing in the USA. More information is available at: https://www.dataprivacyframework.gov/participant/4452.
This website incorporates elements from the Pinterest social network, operated by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.
When you access a page containing such an element, your browser establishes a direct connection to Pinterest's servers. This social media element transmits log data to Pinterest's server in the United States. This log data may include your IP address, the address of the websites you visit that also contain Pinterest functions, browser type and settings, date and time of the request, how you use Pinterest, and cookies.
The use of this service is based on your consent under Art. 6 (1)(a) GDPR and § 25 (1) TTDSG. Consent can be withdrawn at any time.
For more information about the purpose, scope, and further processing and use of the data by Pinterest, as well as your rights and options for protecting your privacy, please refer to Pinterest's privacy policy: https://policy.pinterest.com/en/privacy-policy.
6. Newsletter
Newsletter Data
If you wish to receive the newsletter offered on this website, we require an email address and information that allows us to verify that you are the owner of the provided email address and that you agree to receive the newsletter. No further data will be collected or will only be collected on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter signup form is based solely on your consent (Art. 6 (1)(a) GDPR). You can revoke your consent to the storage of the data, the email address, and its use for sending the newsletter at any time, for example, via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter or until the purpose for storing the data no longer applies (e.g., after the newsletter has been discontinued). Data stored for other purposes (e.g., email addresses for the member area) remain unaffected.
After you unsubscribe from the newsletter, your email address may be stored in a blacklist to prevent future mailings. The data from the blacklist is used solely for this purpose and is not merged with other data. This serves both your interest and our interest in complying with legal requirements for sending newsletters (legitimate interest under Art. 6 (1)(f) GDPR). Blacklist data is stored indefinitely. You may object to this storage if your interests outweigh our legitimate interest.7. Plugins and Tools
7. Plugins and Tools
YouTube
This website incorporates videos from the YouTube website. The operator of the website is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
When you visit one of our pages that includes a YouTube video, a connection to YouTube's servers is established. The YouTube server is informed about which of our pages you have visited.
YouTube may also store cookies on your device or use similar recognition technologies (e.g., device fingerprinting). This allows YouTube to collect information about visitors to this website. This information is used, among other things, to collect video statistics, improve user-friendliness, and prevent fraud.
If you are logged into your YouTube account, you enable YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.
The use of YouTube is in the interest of an attractive presentation of our online offerings. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Further information on the handling of user data can be found in YouTube's privacy policy at: https://policies.google.com/privacy?hl=en.
The company is certified under the "EU-U.S. Data Privacy Framework" (DPF). This certification ensures compliance with European data protection standards for data processing in the USA. More information is available at: https://www.dataprivacyframework.gov/participant/5780.
Vimeo
This website uses plugins from the Vimeo video portal. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
When you visit one of our pages equipped with a Vimeo plugin, a connection to Vimeo's servers is established. The Vimeo server is informed about which of our pages you have visited. In addition, Vimeo obtains your IP address. This applies even if you are not logged into Vimeo or do not have a Vimeo account. The information collected by Vimeo is transmitted to Vimeo’s servers in the USA.
If you are logged into your Vimeo account, you enable Vimeo to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account.
Vimeo uses cookies or similar recognition technologies (e.g., device fingerprinting) to recognize website visitors.
The use of Vimeo is in the interest of an attractive presentation of our online offerings. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
The data transfer to the USA is based on the EU Commission's standard contractual clauses and, according to Vimeo, on “legitimate business interests.” Details can be found here: https://vimeo.com/privacy.
Google Maps
This website uses the Google Maps mapping service. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. With the help of this service, we can embed map material on our website.
To use Google Maps, it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission. If Google Maps is activated, Google may use Google Fonts to ensure a consistent display of fonts. When you access Google Maps, your browser loads the required web fonts into its browser cache to display texts and fonts correctly.
The use of Google Maps is in the interest of providing an appealing presentation of our online offerings and making the locations specified on our website easy to find. This constitutes a legitimate interest under Art. 6 (1)(f) GDPR. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Data transfer to the USA is based on the EU Commission's standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
More information on handling user data can be found in Google’s privacy policy at: https://policies.google.com/privacy?hl=en.
Spotify
This website integrates functions from the Spotify music service. The provider is Spotify AB, Birger Jarlsgatan 61, 113 56 Stockholm, Sweden. Spotify plugins are recognizable by the green logo on this website. An overview of Spotify plugins can be found at: https://developer.spotify.com.
When you visit this website, the plugin establishes a direct connection between your browser and Spotify’s server. Spotify receives the information that you visited this website with your IP address. If you click on the Spotify button while logged into your Spotify account, you can link the content of this website to your Spotify profile. This allows Spotify to associate your visit to this website with your user account.
We point out that Spotify uses Google Analytics during Spotify use, which means your usage data may also be transferred to Google. Google Analytics is a tool of the Google Group for analyzing user behavior with its headquarters in the USA. Spotify is solely responsible for this integration. We, as website operators, have no influence on this processing.
The storage and analysis of the data are based on Art. 6 (1)(f) GDPR. The website operator has a legitimate interest in an attractive and acoustically appealing design of their website. If consent has been requested, processing is based solely on Art. 6 (1)(a) GDPR and § 25 (1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be withdrawn at any time.
Further information on the handling of user data can be found in Spotify’s privacy policy: https://www.spotify.com/legal/privacy-policy/.
If you do not want Spotify to associate your visit to this website with your Spotify user account, please log out of your Spotify user account.
Communication via WhatsApp
We offer you the opportunity to communicate with us via WhatsApp. The provider of this service is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
The use of WhatsApp is based on your voluntary consent under Art. 6 (1)(a) GDPR. During communication, data such as your phone number and the content you provide (e.g., text messages, images) may be collected. For more information, please refer to WhatsApp’s privacy policy: https://www.whatsapp.com/legal.
Typeform & LinkedIn
We use Typeform for creating and processing surveys and forms. The provider is TYPEFORM S.L., Carrer Bac de Roda, 163, 08018 Barcelona, Spain. Processing is based on your consent (Art. 6 (1)(a) GDPR).
Additionally, we use LinkedIn for marketing and analytics purposes. The provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. Data processing is carried out in accordance with LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy.
Google Tag Manager
This website uses Google Tag Manager, a tool for managing website tags. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager does not set cookies or collect personal data but serves to integrate and manage tools and scripts. Processing is based on Art. 6 (1)(f) GDPR.
Google Analytics & Google Ads
We use Google Analytics to analyze the use of our website. Google Ads supports us in serving targeted advertisements. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The use of these tools is based on your consent under Art. 6 (1)(a) GDPR. For more information, please refer to: https://policies.google.com/privacy.
Google Ads Remarketing & Google AdSense
Our website uses Google Ads Remarketing and Google AdSense to display relevant advertisements. The provider is Google Ireland Limited. These tools allow us to display targeted advertising based on your user behavior. Processing is based on your consent under Art. 6 (1)(a) GDPR.
Meta-Pixel (formerly Facebook Pixel)
We use the Meta-Pixel to track user behavior after they are redirected to our website by clicking on a Facebook or Instagram ad. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Processing is based on your consent under Art. 6 (1)(a) GDPR. For more information, please refer to: https://www.facebook.com/about/privacy.
MailJet
We use MailJet to send newsletters. The provider is MailJet SAS, 13-13bis, Rue de l’Aubrac, 75012 Paris, France. MailJet processes data on our behalf and in accordance with our instructions. Processing is based on a Data Processing Agreement (DPA) and Art. 6 (1)(a) GDPR. For more information, please refer to: https://www.mailjet.com/security-privacy/.