Privacy policy

The responsible body within the meaning of the data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

 

COFFRIGO GmbH

Artur-Kutscher-Platz 1

80802 Munich

 

Represented by:

Leo Pach-Hanssenheimb

 

Contact:

Email: hallo@cofrigo.de

 

Register entry: entry in the commercial register

Registration court: District Court of Munich

Registration number: HRB 248300

Responsible for the content according to § 55 Abs. 2 RStV:

Leo Pach-Hanssenheimb

 

 

PRIVACY

 

We have written this data protection declaration (version 08.07.2020-311192649) in order to explain to you in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 what information we collect, how we use data and what decision-making options you have as a visitor to this website.

Unfortunately, it is in the nature of things that these explanations sound very technical, but we have tried to describe the most important things as simply and clearly as possible when creating them.

 

 

PERSONAL INFORMATION WE COLLECT

 

When you visit the Website, we automatically collect certain information about your device, including web browser information, IP address, time zone information and some of the cookies installed on your device. As you navigate the site, we also collect information about the individual web pages or products you view, the websites or search terms that brought you to the site, and information about how you interact with the site. We refer to this automatically collected information as "Device Information".

 

We collect device information using the following technologies:

 

• "Cookies" are data files stored on a device or computer, often containing an anonymous unique identifier. More information about cookies and how to disable cookies can be found at http://www.allaboutcookies.org.
• "Log files" log actions on the website and collect data such as IP address, browser type, internet service provider, referring/exit pages and date/time stamp.
• "Web beacons", "tags" and "pixels" are electronic files used to collect information about how you navigate the website.

   

We also collect certain information about you when you buy or attempt to buy something on the Site. This includes name, billing address, shipping address, payment information (including credit card numbers), email address, and phone number. We refer to this information as "Order Information".

 

When we use "Personal Information" in this Privacy Policy, we mean both device information and order information.

 

 

HOW DO WE USE YOUR PERSONAL DATA?

 

We typically use the Order Information we collect to fulfill orders we receive through the Site (including, but not limited to, processing your payment information, arranging for shipment, and sending you invoices and/or order confirmations).

 

  We also use this ordering information to:

 

• communication with you;
• screening our orders for potential risk or fraud and
• provide you with information or advertising related to our products or services, provided this is consistent with your privacy preferences.

 

We use the device information we collect to check for potential risks and fraud (in particular your IP address) and generally to improve and optimize our website (e.g. by analyzing how our customers navigate and interact with the website and to measure success our marketing and advertising campaigns).

 

 

DISCLOSURE OF YOUR PERSONAL INFORMATION

 

We share your personal information with third parties who assist us in using your personal information as described above. For example, we use Shopify to power our online store. For more information about how Shopify uses your personal information, visit: https://www.shopify.com/legal/privacy. We also use Google Analytics to understand how our customers use the website. Further information on the use of your personal data by Google can be found here: https://policies.google.com/privacy?hl=de. You can disable Google Analytics here: https://tools.google.com/dlpage/gaoptout.

 

Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

 

 

BEHAVIOR-BASED ADVERTISING

 

As described above, we use your personal information to provide you with targeted advertising or marketing communications that we think may be of interest to you. For more information about how targeted advertising works, visit the Network Advertising Initiative ("NAI") educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.

 

You can opt out of targeted ads here:

 

• FACEBOOK – https://www.facebook.com/settings/?tab=ads
• GOOGLE – https://www.google.com/settings/ads/anonymous
• BING - https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads

 

Additionally, you may opt out of some of these services through the Digital Advertising Alliance's opt-out portal: http://optout.aboutads.info/.

 

 

DO NOT TRACK

 

Please note that we do not change our website's data collection and use practices when we receive a "Do Not Track" signal from your browser.

 

 

YOUR RIGHTS

 

If you are a European resident, you have the right to access the personal information we hold about you and to request that it be corrected, updated or deleted. If you wish to exercise this right, please contact us using the details below.

In addition, if you are a European resident, please note that we process your information in order to perform contracts with you (e.g. when you place an order through the Website) or to pursue our legitimate business interests set out above. Additionally, please note that your information will be transferred outside of Europe, including Canada and the United States.

 

 

DATA RETENTION

 

If you place an order through the Site, we will retain your order information for our records unless you ask us to erase that information.

 

 

AUTOMATIC DATA SAVING

 

When you visit websites today, certain information is automatically created and stored, including on this website.

If you visit our website as you are right now, our web server (computer on which this website is stored) automatically saves data such as

• the address (URL) of the website accessed
• Browser and browser version
• the operating system used
• the address (URL) of the previously visited page (referrer URL)
• the host name and IP address of the device from which access is being made
• Date and Time

in files (web server log files).

As a rule, web server log files are stored for two weeks and then automatically deleted. We do not pass on this data, but cannot rule out that this data will be viewed in the event of illegal behavior.

 

 

COOKIES

 

Our website uses HTTP cookies to store user-specific data.

In the following we explain what cookies are and why they are used so that you can better understand the following data protection declaration.

 

What exactly are cookies?

 

Whenever you surf the Internet, you use a browser. Well-known browsers include Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites store small text files in your browser. These files are called cookies.

 

One thing cannot be denied: Cookies are really useful little helpers. Almost all websites use cookies. More precisely, they are HTTP cookies, as there are other cookies for other areas of application. HTTP cookies are small files that are stored on your computer by our website. These cookie files are automatically stored in the cookie folder, which is basically the "brain" of your browser. A cookie consists of a name and a value. When defining a cookie, one or more attributes must also be specified.

 

Cookies store certain user data from you, such as language or personal page settings. When you visit our site again, your browser transmits the "user-related" information back to our site. Thanks to the cookies, our website knows who you are and offers you your usual default setting. In some browsers each cookie has its own file, in others such as Firefox all cookies are stored in a single file.

 

There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, third-party cookies are created by partner websites (e.g. Google Analytics). Each cookie must be evaluated individually, since each cookie stores different data. The expiry time of a cookie also varies from a few minutes to a few years. Cookies are not software programs and do not contain viruses, Trojans or other "pests". Cookies also cannot access information on your PC.

 

For example, cookie data can look like this:

• Name: _ga
• Expiry time: 2 years
• Use: differentiation of website visitors
• Sample value: GA1.2.1326744211.152311192649

A browser should support the following minimum sizes:

• A cookie should contain at least 4096 bytes
• At least 50 cookies should be stored per domain
• A total of at least 3000 cookies should be able to be saved

 

What types of cookies are there?

 

The question of which cookies we use in particular depends on the services used and is clarified in the following sections of the data protection declaration. At this point we would like to briefly discuss the different types of HTTP cookies.

 

There are 4 types of cookies:

 

Strictly Necessary Cookies

These cookies are necessary to ensure basic functions of the website. For example, these cookies are needed if a user puts a product in the shopping cart, then continues surfing on other pages and only goes to the checkout later. These cookies do not delete the shopping cart, even if the user closes their browser window.

 

Functional cookies

These cookies collect information about user behavior and whether the user receives any error messages. In addition, these cookies are also used to measure the loading time and behavior of the website in different browsers.

 

Targeting cookies

These cookies ensure a better user experience. For example, entered locations, font sizes or form data are saved.

 

Advertising cookies

These cookies are also called targeting cookies. They are used to provide the user with individually tailored advertising. This can be very useful, but also very annoying.

 

Usually, when you visit a website for the first time, you will be asked which of these types of cookies you would like to allow. And of course this decision is also stored in a cookie.

 

How can I delete cookies?

 

You decide for yourself how and whether you want to use cookies. Regardless of which service or website the cookies come from, you always have the option of deleting cookies, only partially allowing them or deactivating them. For example, you can block third-party cookies but allow all other cookies.

If you want to find out which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:

 

• Chrome: Delete, enable and manage cookies in Chrome
• Safari: Managing Cookies and Website Data with Safari
• Firefox: Clear cookies to remove data websites have placed on your computer
• Internet Explorer: Delete and manage cookies
• Microsoft Edge: Deleting and managing cookies

 

If you generally do not want any cookies, you can set up your browser so that it always informs you when a cookie is to be set. You can decide for each individual cookie whether you allow the cookie or not.

 

The procedure differs depending on the browser. It is best to search the instructions in Google with the search term “delete cookies Chrome” or “disable cookies Chrome” in case of a Chrome browser or replace the word “Chrome” with the name of your browser, e.g. Edge, Firefox, Safari.

 

What about my data protection?

 

The so-called “Cookie Guidelines” have been in place since 2009. It states that the storage of cookies requires your consent. Within the EU countries, however, there are still very different reactions to these directives. In Germany, the cookie guidelines have not been implemented as national law. Instead, this guideline was largely implemented in Section 15 (3) of the Telemedia Act (TMG).

If you want to know more about cookies and are not afraid of technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Internet Engineering Task Force (IETF) Request for Comments called “HTTP State Management Mechanism”.

 

 

STORAGE OF PERSONAL DATA

 

Personal data that you transmit to us electronically on this website, such as name, e-mail address, address or other personal information when submitting a form or comments on the blog, will be stored by us together with the time and the IP Address used only for the purpose stated, kept safe and not passed on to third parties.

 

We therefore only use your personal data for communication with those visitors who expressly request contact and for the processing of the services and products offered on this website. We do not pass on your personal data without your consent, but we cannot rule out that this data will be viewed in the event of illegal behavior.

 

If you send us personal data by e-mail - thus outside of this website - we cannot guarantee a secure transmission and the protection of your data. We recommend that you never send confidential data unencrypted by e-mail.

According to Article 6 paragraph 1 a GDPR (lawfulness of processing), the legal basis is that you give us your consent to process the data you have entered. You can revoke this consent at any time - an informal e-mail is sufficient, you will find our contact details in the imprint.

 

 

RIGHTS ACCORDING TO THE DATA PROTECTION REGULATION

 

According to the provisions of the GDPR, you have the following rights:

• Right to rectification (Article 16 GDPR)
• Right to erasure ("right to be forgotten") (Article 17 GDPR)
• Right to restriction of processing (Article 18 GDPR)
• Right to notification – obligation to notify in connection with rectification or erasure of personal data or restriction of processing (Article 19 GDPR)
• Right to data portability (Article 20 GDPR)
• Right to object (Article 21 GDPR)
• Right not to be subject to a decision based solely on automated processing, including profiling (Article 22 GDPR)

 

If you believe that the processing of your data violates data protection law or your data protection rights have otherwise been violated in any way, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).

 

 

EVALUATION OF VISITOR BEHAVIOR

 

In the following data protection declaration we inform you whether and how we evaluate data from your visit to this website. The evaluation of the collected data is usually anonymous and we cannot draw any conclusions about your person from your behavior on this website.

 

You can find out more about the possibilities of objecting to this evaluation of visit data in the following data protection declaration.

 

TLS encryption with https

 

We use https to transmit data securely on the Internet (data protection through technology design Article 25 paragraph 1 GDPR). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this protection of data transmission by the small lock symbol in the top left corner of the browser and the use of the https scheme (instead of http) as part of our Internet address.

 

 

GOOGLE FONTS PRIVACY STATEMENT

 

We use Google Fonts on our website. These are the “Google fonts” from Google Inc. The company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe.

You do not need to register or enter a password to use Google fonts. Furthermore, no cookies are stored in your browser. The files (CSS, typefaces/fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, requests for CSS and fonts are completely separate from all other Google services. If you have a Google account, you don't have to worry about your Google account data being transmitted to Google while using Google Fonts. Google records the use of CSS (Cascading Style Sheets) and the fonts used and stores this data securely. How the data storage looks exactly, we will look at in detail.

 

What are Google Fonts?

 

Google Fonts (formerly Google Web Fonts) is a directory of over 800 fonts that Google makes available to its users free of charge.

Many of these fonts are released under the SIL Open Font License, while others are released under the Apache License. Both are free software licenses.

 

Why do we use Google Fonts on our website?

 

With Google Fonts we can use fonts on our own website, but do not have to upload them to our own server. Google Fonts is an important component in keeping the quality of our website high. All Google fonts are automatically optimized for the web and this saves data volume and is a great advantage especially for use with mobile devices. When you visit our site, the small file size ensures fast loading times. Furthermore, Google Fonts are secure web fonts. Different image synthesis systems (rendering) in different browsers, operating systems and mobile devices can lead to errors. Such errors can partially distort texts or entire websites. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform problems with Google Fonts. Google Fonts supports all major browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). So we use Google Fonts so that we can present our entire online service as beautifully and uniformly as possible.

 

Which data is stored by Google?

 

When you visit our website, the fonts are reloaded via a Google server. This external call transmits data to the Google servers. In this way, Google also recognizes that you or your IP address are visiting our website. The Google Fonts API was designed to reduce the use, storage and collection of end-user data to what is necessary for proper font delivery. Incidentally, API stands for "Application Programming Interface" and serves, among other things, as a data transmitter in the software sector.

 

Google Fonts securely stores CSS and font requests on Google and is therefore protected. The collected usage figures allow Google to determine how well the individual fonts are received. Google publishes the results on internal analysis pages, such as Google Analytics. Google also uses data from its own web crawler to determine which websites use Google fonts. This data is published in the Google Fonts BigQuery database. Entrepreneurs and developers use the Google web service BigQuery to examine and move large amounts of data.

 

It should be noted, however, that with each Google Font request, information such as language settings, IP address, browser version, browser screen resolution and browser name are automatically transmitted to the Google servers. Whether this data is also stored cannot be clearly determined or is not clearly communicated by Google.

 

How long and where is the data stored?

 

Google stores requests for CSS assets for one day on its servers, which are mainly located outside the EU. This enables us to use the fonts using a Google style sheet. A style sheet is a template that you can use to quickly and easily change the design or font of a website, for example.

 

The font files are stored by Google for one year. Google is thus pursuing the goal of fundamentally improving the loading time of websites. When millions of websites refer to the same fonts, they are cached after the first visit and immediately reappear on all other websites visited later. Sometimes Google updates font files to reduce file size, increase language coverage, and improve design.

 

How can I delete my data or prevent data storage?

 

The data that Google stores for a day or a year cannot simply be deleted. The data is automatically transmitted to Google when the page is accessed. In order to be able to delete this data prematurely, you must contact Google Support at https://support.google.com/?hl=de&tid=311192649. In this case, you only prevent data storage if you do not visit our site.

Unlike other web fonts, Google allows us unlimited access to all fonts. So we have unlimited access to a sea of fonts and thus get the best out of our website. You can find more about Google Fonts and other questions at https://developers.google.com/fonts/faq?tid=311192649. Although Google addresses data protection issues there, it does not contain really detailed information about data storage. It is relatively difficult to get really precise information about stored data from Google.

You can also read about what data Google collects and what this data is used for at https://www.google.com/intl/de/policies/privacy/.

 

 

EMBEDDED SOCIAL MEDIA ELEMENTS PRIVACY POLICY

 

We integrate elements of social media services on our website to display images, videos and texts.

By visiting pages that display these elements, data is transferred from your browser to the respective social media service and stored there. We have no access to this data.

The following links take you to the pages of the respective social media services, where it is explained how they handle your data:

• Instagram Privacy Policy: https://help.instagram.com/519522125107875
• The Google data protection declaration applies to YouTube: https://policies.google.com/privacy?hl=de
• Facebook data policy: https://www.facebook.com/about/privacy
• Twitter privacy policy: https://twitter.com/de/privacy

 

 

FACEBOOK PRIVACY STATEMENT

 

We use selected Facebook tools on our website. Facebook is a social media network operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. These tools allow us to offer you and people who are interested in our products and services the best possible offer. Below we provide an overview of the various Facebook tools, what data is sent to Facebook and how you can delete this data.

 

What are Facebook tools?

 

In addition to many other products, Facebook also offers the so-called “Facebook Business Tools”. This is the official name of Facebook. But since the term is hardly known, we decided to just call them Facebook tools. These include, among others:

• Facebook pixel
• social plug-ins (such as the "Like" or "Share" button)
• Facebook Login
• Account Kit
• APIs (programming interface)
• SDKs (collection of programming tools)
• Platform integrations
• Plugins
• Codes
• Specifications
• Documentation
• Technologies and Services

 

Through these tools, Facebook expands its services and has the ability to receive information about user activities outside of Facebook.

 

Why do we use Facebook tools on our website?

 

We only want to show our services and products to people who are really interested in them. With the help of advertisements (Facebook ads) we can reach exactly these people. In order to be able to show users appropriate advertising, however, Facebook needs information about people's wishes and needs. Information about user behavior (and contact details) is made available to the company on our website. As a result, Facebook collects better user data and can show interested people appropriate advertising about our products or services. The tools thus enable tailor-made advertising campaigns on Facebook.

 

Facebook calls data about your behavior on our website “event data”. These are also used for measurement and analysis services. Facebook can thus create "campaign reports" on our behalf about the effect of our advertising campaigns. Furthermore, through analyzes we get a better insight into how you use our services, website or products. As a result, we use some of these tools to optimize your user experience on our website. For example, you can use the social plug-ins to share content on our site directly on Facebook.

 

What data is stored by Facebook tools?

 

By using individual Facebook tools, personal data (customer data) can be sent to Facebook. Depending on the tools used, customer data such as name, address, telephone number and IP address can be sent.

Facebook uses this information to match the data with the data it has from you (if you are a Facebook member). Before customer data is transmitted to Facebook, so-called "hashing" takes place. This means that a data set of any size is transformed into a character string. This is also used to encrypt data.

 

In addition to the contact data, "event data" is also transmitted. "Event data" means the information that we receive about you on our website. For example, which subpages you visit or which products you buy from us. Facebook does not share the information it receives with third parties (such as advertisers) unless the company has explicit permission or is legally required to do so. "Event data" may also be linked to contact information. This allows Facebook to offer better personalized advertising. After the matching process already mentioned, Facebook deletes the contact data again.

 

In order to be able to deliver advertisements in an optimized manner, Facebook only uses the event data if it has been combined with other data (which was collected by Facebook in a different way). Facebook also uses this event data for security, protection, development and research purposes. Much of this data is transmitted to Facebook via cookies. Cookies are small text files that are used to store data or information in browsers. Depending on the tools used and whether you are a Facebook member, a different number of cookies will be created in your browser. In the descriptions of the individual Facebook tools, we go into more detail about individual Facebook cookies. You can also find general information about the use of Facebook cookies at https://www.facebook.com/policies/cookies.

 

How long and where is the data stored?

 

In principle, Facebook stores data until it is no longer required for its own services and Facebook products. Facebook has servers all over the world where your data is stored. However, customer data will be deleted within 48 hours after it has been compared with your own user data.

 

How can I delete my data or prevent data storage?

In accordance with the General Data Protection Regulation, you have the right to information, correction, transferability and deletion of your data.

 

The data will only be completely deleted if you completely delete your Facebook account. And this is how deleting your Facebook account works:

• Click Settings on the right side of Facebook.
• Then click on "Your Facebook Information" in the left column.
• Now click “Deactivation and Deletion”.
• Now select “Delete Account” and then click “Next and Delete Account”
• Now enter your password, click on "Next" and then on "Delete Account"

 

The data that Facebook receives via our site is stored, among other things, via cookies (e.g. in the case of social plugins). You can deactivate, delete or manage individual or all cookies in your browser. Depending on which browser you use, this works in different ways. The following instructions show how to manage cookies in your browser:

 

• Chrome: Delete, enable and manage cookies in Chrome
• Safari: Managing Cookies and Website Data with Safari
• Firefox: Clear cookies to remove data websites have placed on your computer
• Internet Explorer: Delete and manage cookies
• Microsoft Edge: Deleting and managing cookies

 

If you generally do not want any cookies, you can set up your browser so that it always informs you when a cookie is to be set. You can decide for each individual cookie whether you allow it or not.

 

Facebook is an active participant in the EU-U.S. Privacy Shield Framework, which regulates the correct and secure transfer of personal data. You can find more information on this at https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC. We hope we have given you the most important information about the use and data processing by the Facebook tools. If you want to learn more about how Facebook uses your data, we recommend the data guidelines at https://www.facebook.com/about/privacy/update.

 

 

INSTAGRAM PRIVACY STATEMENT

 

We have integrated Instagram functions on our website. Instagram is a social media platform operated by Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA. Instagram has been a subsidiary of Facebook Inc. since 2012 and is one of the Facebook products. Embedding Instagram content on our website is called embedding. This enables us to show you content such as buttons, photos or videos from Instagram directly on our website. If you call up web pages on our website that have an integrated Instagram function, data will be transmitted to Instagram, stored and processed. Instagram uses the same systems and technologies as Facebook. Your data will thus be processed across all Facebook companies.

 

In the following we would like to give you a more detailed insight into why Instagram collects data, what data it is and how you can largely control the data processing. Since Instagram belongs to Facebook Inc., we get our information from the Instagram guidelines on the one hand, but also from the Facebook data guidelines on the other.

 

What is Instagram?

 

Instagram is one of the most well-known social media networks worldwide. Instagram combines the advantages of a blog with the advantages of audiovisual platforms such as YouTube or Vimeo. You can upload photos and short videos to "Insta" (as many users casually call the platform), edit them with various filters and also share them on other social networks. And if you don't want to be active yourself, you can just follow other interesting users.

 

Why do we use Instagram on our website?

 

Instagram is the social media platform that has really taken off in recent years. And of course we also reacted to this boom. We want you to feel as comfortable as possible on our website. Therefore, a varied preparation of our content is a matter of course for us. The embedded Instagram functions allow us to enrich our content with helpful, funny or exciting content from the Instagram world. Since Instagram is a subsidiary of Facebook, the data collected can also be useful for personalized advertising on Facebook. In this way, our advertisements only get to people who are really interested in our products or services.

Instagram also uses the collected data for measurement and analysis purposes. We get summarized statistics and thus more insight into your wishes and interests. It is important to note that these reports do not personally identify you.

 

What data is stored by Instagram?

 

When you come across one of our pages that has Instagram features (such as Instagram images or plugins) built in, your browser automatically connects to Instagram's servers. Data is sent to Instagram, stored and processed. This is regardless of whether you have an Instagram account or not. This includes information about our website, about your computer, about purchases made, about advertisements that you see and how you use our offer. Furthermore, the date and time of your interaction with Instagram are also saved. If you have an Instagram account or are logged in, Instagram stores significantly more data about you.

Facebook distinguishes between customer data and event data. We assume that this is the case with Instagram as well. Customer data are, for example, name, address, telephone number and IP address. It is important to mention that this customer data is only transmitted to Instagram if it has been "hashed" beforehand. Hashing means converting a record into a string. This allows you to encrypt the contact data. In addition, the “event data” mentioned above are also transmitted. Facebook – and consequently also Instagram – understands “event data” to be data about your user behavior. It can also happen that contact data is combined with event data. The contact data collected will be compared with the data that Instagram already has from you.

 

The collected data is transmitted to Facebook via small text files (cookies), which are usually set in your browser. Depending on the Instagram functions used and whether you have an Instagram account yourself, different amounts of data are stored.

 

We assume that data processing works the same on Instagram as on Facebook. This means: if you have an Instagram account or have visited www.instagram.com, Instagram has set at least one cookie. If this is the case, your browser sends information to Instagram via the cookie as soon as you come into contact with an Instagram function. This data will be deleted or made anonymous again after 90 days at the latest (after comparison). Although we have dealt intensively with Instagram's data processing, we cannot say exactly what data Instagram collects and stores.

 

In the following we show you cookies that are set in your browser at least when you click on an Instagram function (such as a button or an Insta image). In our test, we assume that you do not have an Instagram account. Of course, if you are logged in to Instagram, significantly more cookies will be set in your browser.

 

These cookies were used in our test:

Name: csrftoken

Value: ""

Purpose: This cookie is set with high probability for security reasons to prevent falsification of requests. However, we could not find out more precisely.

Expiry date: after one year

Name: mid

Value: ""

Purpose: Instagram sets this cookie to optimize its own services and offers on and off Instagram. The cookie defines a unique user ID.

Expiry date: after the end of the session

Name: fbsr_311192649124024

Value: no information

Purpose: This cookie stores the log-in request for users of the Instagram app.

Expiry date: after the end of the session

Name: rur

Value: ATN

Purpose: This is an Instagram cookie that ensures functionality on Instagram.

Expiry date: after the end of the session

Name: urlgen

Value: “{\”194.96.75.33\”:1901}:1iEtYv:Y833k2_UjKvXgYe311192649”

Purpose: This cookie is used for Instagram marketing purposes.

Expiry date: after the end of the session

 

Note: We cannot claim completeness here. Which cookies are set in the individual case depends on the embedded functions and your use of Instagram.

 

How long and where is the data stored?

 

Instagram shares the information it receives between the Facebook companies with external partners and with people you connect with around the world. Data processing is carried out in compliance with our own data policy. For security reasons, among other things, your data is distributed across the world on Facebook servers. Most of these servers are located in the USA.

 

How can I delete my data or prevent data storage?

 

Thanks to the General Data Protection Regulation, you have the right to information, transferability, correction and deletion of your data. You can manage your data in the Instagram settings. If you want to completely erase your data on Instagram, you need to permanently delete your Instagram account.

 

And this is how the Instagram account deletion works:

 

First, open the Instagram app. On your profile page, go down and click on "Help Center". You are now on the company's website. On the webpage, click "Manage Account" and then click "Delete Your Account".

If you delete your account entirely, Instagram will delete posts such as your photos and status updates. Information that other people have shared about you is not part of your account and consequently will not be deleted.

As already mentioned above, Instagram stores your data primarily via cookies. You can manage, deactivate or delete these cookies in your browser. Management always works a bit differently depending on your browser. Here we show you the instructions for the most important browsers.

 

• Chrome: Delete, enable and manage cookies in Chrome
• Safari: Managing Cookies and Website Data with Safari
• Firefox: Clear cookies to remove data websites have placed on your computer
• Internet Explorer: Delete and manage cookies
• Microsoft Edge: Deleting and managing cookies

 

You can also basically set up your browser so that you are always informed when a cookie is to be set. Then you can always decide individually whether you want to allow the cookie or not.

 

Instagram is a subsidiary of Facebook Inc. and Facebook is an active participant in the EU-U.S. Privacy Shield Framework. This framework ensures correct data transmission between the USA and the European Union. Learn more at https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC. We have tried to give you the most important information about data processing by Instagram. On https://help.instagram.com/519522125107875

you can learn more about Instagram's data policies.

 

 

GOOGLE RECAPTCHA PRIVACY POLICY

 

Our primary goal is to secure and protect our website for you and for us in the best possible way. To ensure this, we use Google reCAPTCHA from Google Inc. The company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services in Europe. With reCAPTCHA we can determine if you really are a real human being and not a robot or other spam software. We understand spam to mean any unwanted information that is sent to us electronically, unsolicited. With the classic CAPTCHAS, you usually had to solve text or image puzzles to check them. With reCAPTCHA from Google, we don't have to bother you with such puzzles most of the time. In most cases, it is sufficient if you simply tick the box and confirm that you are not a bot. With the new Invisible reCAPTCHA version, you don't even have to check the box. You can find out exactly how this works and, above all, what data is used for this in the course of this data protection declaration.

 

What is reCAPTCHA?

 

reCAPTCHA is a free captcha service provided by Google that protects websites from spam software and abuse by non-human visitors. Most often, this service is used when filling out forms on the Internet. A captcha service is a type of automated Turing test designed to ensure that an action on the internet is being performed by a human and not a bot. In the classic Turing test (named after the computer scientist Alan Turing), a human determines the difference between a bot and a human. In the case of captchas, the computer or a software program also takes care of this. Classic captchas work with small tasks that are easy for humans to solve, but present significant difficulties for machines. With reCAPTCHA you no longer have to actively solve puzzles. The tool uses modern risk techniques to distinguish humans from bots. Here you only have to tick the text field "I'm not a robot" or with Invisible reCAPTCHA even that is no longer necessary. With reCAPTCHA, a JavaScript element is integrated into the source text and then the tool runs in the background and analyzes your user behavior. The software calculates a so-called Captcha score from these user actions. Google uses this score to calculate the probability that you are a human before entering the Captcha. reCAPTCHA or Captchas in general are always used when bots could manipulate or misuse certain actions (e.g. registrations, surveys, etc.).

 

Why do we use recaptcha on our website?

 

We only want to welcome flesh and blood people to our site. Bots or spam software of all kinds can safely stay at home. That's why we're doing everything we can to protect ourselves and offer you the best possible user experience. For this reason we use Google reCAPTCHA from Google. So we can be pretty sure that we remain a "bot-free" website. By using reCAPTCHA, data is transmitted to Google to determine whether you are really a human being. reCAPTCHA therefore serves to ensure the security of our website and subsequently also your security. For example, without reCAPTCHA it could happen that a bot registers as many email addresses as possible during registration in order to then "spam" forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.

 

What data is stored by reCAPTCHA?

 

reCAPTCHA collects personal data from users to determine whether the actions on our website really come from people. The IP address and other data that Google needs for the reCAPTCHA service can therefore be sent to Google. IP addresses are almost always shortened within the member states of the EU or other contracting states of the Agreement on the European Economic Area before the data ends up on a server in the USA. The IP address is not combined with other data from Google unless you are logged in with your Google account while using reCAPTCHA. First, the reCAPTCHA algorithm checks whether Google cookies from other Google services (YouTube, Gmail, etc.) are already placed on your browser. Then reCAPTCHA sets an additional cookie in your browser and captures a snapshot of your browser window.

The following list of collected browser and user data does not claim to be complete. Rather, they are examples of data that, to our knowledge, are processed by Google.

 

• Referrer URL (the address of the site the visitor came from)
• IP address (e.g. 256.123.123.1)
• Information about the operating system (the software that enables your computer to operate. Known operating systems are Windows, Mac OS X or Linux)
• Cookies (small text files that store data in your browser)
• Mouse and keyboard behavior (every action you perform with the mouse or keyboard is saved)
• Date and language settings (which language or which date you have preset on your PC is saved)
• All JavaScript objects (JavaScript is a programming language that allows websites to adapt to the user. JavaScript objects can collect all kinds of data under one name)
• Screen resolution (shows how many pixels the image display consists of)

 

It is undisputed that Google uses and analyzes this data even before you click on the "I'm not a robot" tick. With the Invisible reCAPTCHA version, you don't even have to check the box and the whole recognition process runs in the background. Google does not tell you in detail how much and what data Google stores.

 

The following cookies are used by reCAPTCHA: Here we refer to the reCAPTCHA demo version from Google at https://www.google.com/recaptcha/api2/demo. All of these cookies require a unique identifier for tracking purposes. Here is a list of cookies set by Google reCAPTCHA on the demo version:

Name: IDE

Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-311192649-8

Purpose: This cookie is set by DoubleClick (also owned by Google) to register and report the actions of a user on the website when dealing with advertisements. In this way, the effectiveness of the advertising can be measured and appropriate optimization measures can be taken. IDE is stored in browsers under doubleclick.net domain.

Expiry date: after one year

Name: 1P_JAR

Value: 2019-5-14-12

Purpose: This cookie collects statistics on website usage and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to display relevant advertisements to users. Furthermore, the cookie can be used to prevent a user from seeing the same ad more than once.

Expiry date: after one month

Name: ANID

Value: U7j1v3dZa3111926490xgZFmiqWppRWKOr

Purpose: We were not able to find out much information about this cookie. In Google's privacy policy, the cookie is used in connection with "advertising cookies" such as e.g. For example, “DSID”, “FLC”, “AID”, “TAID” are mentioned. ANID is stored under domain google.com.

Expiry date: after 9 months

Name: CONSENT

Value: YES+AT.de+20150628-20-0

Purpose: The cookie stores the status of a user's consent to the use of various Google services. CONSENT is also used for security purposes to screen users, prevent fraudulent login information and protect user data from unauthorized attacks.

Expiry date: after 19 years

Name: NID

Value: 0WmuWqy311192649zILzqV_nmt3sDXwPeM5Q

Purpose: NID is used by Google to adapt advertisements to your Google search. With the help of the cookie, Google “remembers” your most frequently entered search queries or your previous interaction with ads. So you always get tailor-made advertisements. The cookie contains a unique ID to collect the user's personal settings for advertising purposes.

Expiry date: after 6 months

Name: DV

Value: gEAABBCjJMXcI0dSAAAANbqc311192649-4

Purpose: As soon as you have ticked the "I'm not a robot" checkbox, this cookie will be set. The cookie is used by Google Analytics for personalized advertising. DV collects information in an anonymous form and is further used to make user distinctions.

Expiry date: after 10 minutes

 

Note: This list cannot claim to be complete, as experience has shown that Google changes the choice of its cookies again and again.

 

How long and where is the data stored?

 

By inserting reCAPTCHA, your data will be transferred to the Google server. Where exactly this data is stored is not made clear by Google, even after repeated inquiries. Without having received confirmation from Google, it can be assumed that data such as mouse interaction, time spent on the website or language settings on the European or American Google servers are stored. The IP address that your browser transmits to Google is generally not merged with other Google data from other Google services. However, if you are logged into your Google account while using the reCAPTCHA plugin, the data will be merged. The deviating data protection regulations of the company Google apply.

 

How can I delete my data or prevent data storage?

 

If you do not want any data about you and your behavior to be transmitted to Google, you must log out of Google completely and delete all Google cookies before you visit our website or use the reCAPTCHA software. In principle, the data is automatically transmitted to Google as soon as you access our site. To delete this data again, you must contact Google Support at https://support.google.com/?hl=de&tid=311192649.

So if you use our website, you agree that Google LLC and its representatives automatically collect, process and use data.

 

You can learn a little more about reCAPTCHA on Google's web developer page at https://developers.google.com/recaptcha/. Google goes into the technical development of reCAPTCHA in more detail here, but you won't find precise information about data storage and data protection-related topics there either. A good overview of the basic use of data at Google can be found in the in-house data protection declaration at https://www.google.com/intl/de/policies/privacy/.

 

Source: Created with AdSimple's data protection generator in cooperation with slashtechnik.de