The purpose of data protection is that our customers and business partners as well as our suppliers and other contractual partners are not impaired in their rights by the processing of their personal data. This Data Protection Policy refers to the nature, scope and purpose of personal data processing (hereinafter referred to as “data”) relating to our websites, features and content thereof, as well as the external presence such as our social media profiles (collectively referred to as “online offer”). With regard to the terminology used, e.g. “processing” and “controller”, we refer to the definitions stimulated in Article 4 of the General Data Protection Regulation (GDPR).
1. Persons responsible and Data Protection Officer
paws-tails.eu (hereafter referred to as: Paws and Tails)
Phone: +49 152 2 2004014
The data protection officer of paws-tails.eu is available at the address mentioned above, for the attention of Mr. Daniel Krebs.
2. Collection and storage of personal data as well as the nature and purpose of their use
a) We collect your data when you visit the website
When you visit our website https://paws-tails.eu, the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information will be collected without your intervention and stored until deleted automatically: IP address of the requesting computer, date and time of access, name and URL of the accessed file, website from which the access is made (referrer URL), browser used and, if applicable, the operating system of your computer and the name of your access provider.
We process the data mentioned to:
- Ensure a smooth connection establishment of the website
- Increase user experience and comfort while using our website
- To evaluate the system security and stability and for other administrative purposes.
b) After you subscribe to our newsletter
If, according to Article 6 paragraph 1 sentence 1 lit. a GDPR, you have expressly consented, we use your e-mail address to send you our newsletter on a regular basis. For receiving our newsletter, giving an e-mail address is sufficient.
Double opt-in and logging: Subscribing to our newsletter is part of a so-called double opt-in procedure. This means that you will receive an email after subscribing requesting you to confirm your subscription. This confirmation is necessary so that nobody can subscribe with an email address that is not their own. Subscription to the newsletter will be logged as proof of the subscription process in accordance with legal requirements. This includes the storage of the subscription and confirmation time as well as the IP address. Similarly, changes to your data stored with the emailing service provider will be logged.
Unsubscribing from our newsletter
Unsubscribing is possible at any time, for example via a link at the end of each newsletter. Alternatively, you can also send an unsubscribe request via e-mail to firstname.lastname@example.org.
After unsubscribing, your e-mail address will be deleted immediately from our newsletter distributor, unless you have expressly consented to a continued use of the collected data or the continued processing is otherwise permitted by law. The newsletter is distributed via “MailChimp”, an email marketing service of Rocket Science Group, LLC, 675 Ponce De Leon Ave # 5000, Atlanta, GA 30308, USA.
The e-mail addresses of our Newsletter recipients, as well as their other information described in these notes, are stored on the servers of MailChimp in the USA. MailChimp uses this information to send and evaluate the newsletters on our behalf. Furthermore, MailChimp may, according to its own information, use this data to optimise or improve its own services, e.g. for the technical optimisation of sending and designing the newsletter or for economic purposes to determine from which countries the recipients come.
c) When using our contact form
For questions of any kind, Paws and Tails offers the opportunity to contact us via a form provided on the website. It is not required to provide the email or any other contact data. Further information can be provided voluntarily. Data processing for the purpose of contacting us is in accordance with Article 6 Paragraph 1 Sentence 1 lit. a GDPR based on your consent given voluntarily. The personal data collected for the use of the contact form of Paws and Tails will be deleted after completion of the request made by you after expiry of the statutory period.
3. Disclosure of data
Transferring of personal data takes place only for the following purposes. Paws and Tails will pass on your personal data to third parties only if:
- you have given the required express consent according to Article 6 Paragraph 1 Sentence 1 lit. a GDPR,
- the disclosure in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR is required beyond the performance of the contract for the protection of legitimate interests of us or third parties and there is no reason to assume that you have a predominantly legitimate interest in the non-submittal of your data,
- in the event that the disclosure according to Article 6 Paragraph 1 Sentence 1 lit. c GDPR is a legal obligation, and
- that this is permitted by law and is required for the execution of contractual relationships with you or for the implementation of pre-contractual measures according to Article 6 Paragraph 1 Sentence 1 lit. b GDPR.
Paws and Tails also uses external service providers to settle the services. These are carefully selected by Paws and Tails and commissioned accordingly. They are bound by the instructions of Paws and Tails in terms of privacy and are monitored on a regular basis.
5. Analytical tools
A) Tracking tools
The tracking measures listed below and used by us are based on Article 6 Paragraph 1 Sentence 1 lit. f GDPR. With the tracking measures to be used, we want to ensure a needs-based design and the continuous optimization of our website. On the other hand, we use the tracking measures to statistically record the use of our website and evaluate it for the purpose of optimizing our offer for you. These interests are to be regarded as justified within the meaning of the aforementioned regulation.
The respective data processing purposes and data categories can be found in the corresponding tracking tools.
B) Google Analytics with “Anonymize IP” Extension
Google is certified under the Privacy Shield agreement and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
Google uses this information on our behalf in order to evaluate the use of our online offering by the users, compile reports about the activities within this online offering and provide us with additional services related to the use of this online offering and the internet. In doing so, pseudonymised usage profiles for the users may be prepared from the processed data.
We only use Google Analytics with activated IP anonymization. This means that the IP address of users within member states of the European Union or other states in the European Economic Area is shortened by Google. Only in exceptional cases is the full IP address transferred to a Google server in the USA and shortened there.
The IP address transferred by the user’s browser is not combined with other data by Google. Users can prevent the storage of cookies by configuring the settings of their browser software accordingly. Furthermore, users can prevent the capture of data generated by the cookie and related to their use of the online offering by Google as well as the processing of these data by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
Further information about the use of data by Google, settings and rights to object is available in the Google data privacy statement (https://policies.google.com/technologies/ads) and the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).
The personal data of users are erased or anonymised after 14 months.
С) Google Universal Analytics
We use Google Analytics in the “Universal Analytics” version. “Universal Analytics” is a Google Analytics process that prepares the user analysis on the basis of a pseudonymised user ID and thereby creates a pseudonymised user profile with information from the use of various devices (known as cross-device tracking).
Formation of Target Groups with Google Analytics
We use Google Analytics in order to display the advertisements placed within advertising services of Google and its partners only to those users who have shown an interest in our online offering, or who exhibit certain characteristics (e.g. interest in certain topics or products determined based on the websites that are visited), which we transmit to Google (known as Remarketing Audiences or Google Analytics Audiences). With the help of Remarketing Audiences, we also want to ensure that our advertisements correspond to the potential interests of users.
Google Remarketing & Conversion Measurements
We use the services of Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043 on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online service within the scope of Article 6 (1) letter f of the GDPR, USA, (“Google”).
Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European privacy legislation (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).
We use Google’s online marketing tool, AdWords, to place ads on the Google advertising network (e.. in search results, in videos, on websites, etc.). This allows us to display ads for and within the scope of our website and online offer in order to only present ads to users that potentially match their interests. For instance, if a user is being presented with products that he/she has shown interest in on a different website, it is referred to as “remarketing”. When our or other websites are being accessed, whereby the Google advertising network is active, Google will immediately execute a Google code and so-called (re)marketing tags (invisible graphics or code also referred to as “web beacons”) are incorporated into the website. With the help of these tags an individual cookie, i.e. a small text file, is saved on the user’s device. Comparable technologies can also be used instead of cookies. The file records which websites the user has visited, or which content the user is interested in as well as technical information about the browser and operating system, referring websites, visiting times and other information regarding the use of the online offer.
Furthermore, we receive an individual “conversion cookie”. The information obtained is used by Google to generate conversion statistics on our behalf. However, we only receive the anonymous total number of users who clicked on our ad and were redirected to a conversion tracking tag page. We do not receive any information that personally identifies users.
The user data is processed within the Google advertising networking using a pseudonym. This means that Google does not store or process the user’s name or email address but rather the relevant, cookie-related data within pseudonymous user profiles. Thus, the ads are not displayed to a specific, identifiable person but rather to the owner of the cookie and not their personal identity. This does not apply if the user has explicitly allowed Google to process the data by other means. The user information collected is transmitted to Google and stored on Google servers in the United States.
For more information about Google’s data usage, settings and possibilities of revocation, please read Google’s Private Policy (https://policies.google.com/technologies/ads) as well as the settings regarding the display of ads via Google (https://adssettings.google.com/authenticated).
D) Facebook Pixel, Custom Audiences and Facebook Conversion
Based on our legitimate interests in the analysis, optimization and economical operation of our online offering and for these purposes, our online offering uses what is called the “Facebook pixel” of the social network Facebook operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA or, if you are resident in the EU, by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).
Facebook is certified under the Privacy Shield agreement and thereby guarantees compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active)
The Facebook pixel allows Facebook to identify the visitors to our online offering as a target group for this display of advertisements (known as Facebook ads). Accordingly we use the Facebook pixel in order to display the Facebook ads placed by us only to those Facebook users who have shown an interest in our online offering, or who exhibit certain characteristics (e.g. interest in certain topics or products determined based on the websites that are visited), which we transmit to Facebook (known as Custom Audiences). We also use the Facebook pixel to ensure that our Facebook ads correspond to the potential interests of users and are not perceived as bothersome. With the help of the Facebook pixel, we are also able to understand the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users were forwarded to our website after clicking a Facebook advertisement (known as conversion).
Facebook processes the data according to Facebook’s data usage guideline. Corresponding general information about the display of Facebook ads in Facebook’s data usage guideline: https://www.facebook.com/about/privacy/. Specific information and details about the Facebook pixel and its functionality is available in the Facebook help section: https://www.facebook.com/business/help/651294705016616.
You can object to the recording of data by the Facebook pixel and their use for the display of Facebook ads. To choose what types of advertisements are displayed to you on Facebook, you can call up the page set up by Facebook and follow the instructions for configuring usage-based advertising settings: https://www.facebook.com/settings?tab=ads. The settings are platform-independent, meaning they apply to all devices including desktop computers and mobile devices.
7. Rights of the persons affected
In accordance with Article 15 GDPR, you have the right to request information about your personal data processed by us. In particular, you can request information on the processing purposes, the category of personal data, the categories of recipients to whom your data has been disclosed, the planned retention time, the right to rectify inaccurate data, deletion, limitation of processing or objection, the existence of a right to appeal, the source of your data, if they have not been collected from us, and the existence of automated decision-making including profiling and, where appropriate, meaningful information about their details.
In accordance with Article 16 GDPR, you have the right to demand the rectification of inaccurate data or the completion of personal data stored by us immediately.
In accordance with Article 17 GDPR, you have the right to demand the deletion of your personal data stored by us, unless the processing for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims is required.
In accordance with Article 18 GDPR, you have the right to demand the restriction of the processing of your personal data, as far as the accuracy of the data is disputed by you, the processing is unlawful, but you reject their deletion and we no longer need the data, but you require this data to assert, exercise or defend legal claims or you have objected to processing in accordance with Article 21 GDPR.
In accordance with Article 20 GDPR, you have the right to obtain your personal data you provided us with in a structured, common and machine-readable format or to request the transfer to another person responsible.
In accordance with Article 7 Paragraph 3 GDPR, you have the right to revoke the consent you have once given to us at any time. As a result, we are not allowed to continue the data processing based on this consent for the future and
In accordance with Article 77 GDPR, you have the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or work or our headquarters.
8. Right of objection
If your personal data are based on legitimate interests are processed in accordance with Article 6 Paragraph 1 Sentence 1 lit. f GDPR, you have the right to file an objection against the processing of your personal data in accordance with Article 21 GDPR, provided that there are reasons for this arising from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which is implemented by us without specifying any particular situation. If you would like to exercise your right of revocation or objection, please send an email to email@example.com.
9. External links
As far as links to other websites are included, Paws and Tails has neither influence nor control over the linked contents and the data protection regulations there. Paws and Tails recommends checking the privacy policies on the linked websites in order to determine whether and to what extent personal data is collected, processed, used or made available to third parties.
10. Data security
We use the popular SSL (Secure Socket Layer) method within the site visit, in conjunction with the highest level of encryption supported by your browser. Normally, this is a 256-bit encryption. If your browser does not support a 256-bit encryption, we will use a 128-bit v3 technology instead. Whether a single page of our website is encrypted is shown by the closed key or lock icon in the lower status bar of your browser.
We also take appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or total loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved according to technological developments.