1. Introduction
With the following information, we aim to provide you — as the “data subject” — with an overview of how we process your personal data and your rights under data protection laws. As a rule, you can use our website without providing any personal data. However, if you wish to use special services offered by our company via the website, the processing of personal data may become necessary. If such processing is required and there is no legal basis for it, we will generally obtain your consent beforehand.
The processing of personal data — such as your name, address, or email address — is always carried out in accordance with the (DS-GVO) and the General Data Protection Regulation (GDPR). Through this privacy policy, we aim to inform you about the scope and purpose of the personal data we collect, use, and process.
As the data controller, we have implemented numerous technical and organizational measures to ensure the most comprehensive protection possible for the personal data processed via this website. However, internet-based data transmissions can generally have security vulnerabilities, which means that absolute protection cannot be guaranteed. For this reason, you are free to transmit personal data to us via alternative means, such as by phone or postal mail.
2. Data Controller
The data controller within the meaning of the DS-GVO is:
Markus Buchheit
Lale Sokak 2/13 (Agaoglu My Office)
34752 Istanbul
Turkey
3. Data Protection Officer
The Data Protection Officer under the GDPR / DS-GVO is Michael Buchheit. You can reach the contact person for data protection matters at: info@mb-seo.de
4. Definitions of Terms
This privacy policy is based on the terminology used by the European legislator when adopting the General Data Protection Regulation (DS-GVO). Our aim is to ensure that this privacy policy is easy to read and understand for the general public as well as for our customers and business partners. To achieve this, we would like to first explain the terms used.
In this privacy policy, we use the following terms, among others:
4.1 Personal Data
Personal data refers to any information relating to an identified or identifiable natural person. A natural person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
4.2 Data Subject
A data subject is any identified or identifiable natural person whose personal data is processed by the data controller (our company).
4.3 Processing
Processing refers to any operation or set of operations performed on personal data, whether or not by automated means. This includes collecting, recording, organizing, structuring, storing, adapting or altering, retrieving, consulting, using, disclosing by transmission, dissemination or otherwise making available, aligning or combining, restricting, erasing, or destroying such data.
4.4 Restriction of Processing
Restriction of processing means the marking of stored personal data with the aim of limiting its future processing.
4.5 Profiling
Profiling is any form of automated processing of personal data that involves the use of personal data to evaluate certain personal aspects relating to a natural person — in particular, to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
4.6 Pseudonymization
Pseudonymization is the processing of personal data in such a way that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data is not assigned to an identified or identifiable natural person.
4.7 Processor (Data Processor)
A processor is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller.
4.8 Recipient
A recipient is a natural or legal person, public authority, agency, or other body to whom personal data is disclosed, whether or not they are a third party. However, public authorities that may receive personal data in the framework of a particular inquiry under Union or Member State law are not considered recipients.
4.9 Third Party
A third party is any natural or legal person, public authority, agency, or body other than the data subject, the controller, the processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
4.10 Consent
Consent is any freely given, specific, informed, and unambiguous indication of the data subject’s wishes, by which they, through a statement or a clear affirmative action, signify agreement to the processing of their personal data.
5. Legal Basis for Processing
Article 6(1)(a) of the DS-GVO serves as the legal basis for our company when we obtain consent for a specific processing purpose.
If the processing of personal data is necessary for the performance of a contract to which you are a party — for example, in cases where processing operations are required for the delivery of goods or the provision of a service — the processing is based on Article 6(1)(b) of the DS-GVO. The same applies to processing operations that are necessary for carrying out pre-contractual measures, such as inquiries regarding our products or services.
If our company is subject to a legal obligation that requires the processing of personal data — for example, to fulfill tax obligations — the processing is based on Article 6(1)(c) of the DS-GVO.
In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This could be the case, for example, if a visitor is injured on our premises and their name, age, health insurance details, or other vital information needs to be passed on to a doctor, hospital, or other third party. In such situations, the processing would be based on Article 6(1)(d) of the DS-GVO.
Finally, processing operations may be based on Article 6(1)(f) of the DS-GVO. This legal basis applies to processing that is not covered by any of the aforementioned grounds, when the processing is necessary for the purposes of a legitimate interest pursued by our company or a third party — provided that such interest is not overridden by your interests, fundamental rights, or freedoms. These types of processing operations are particularly permitted because the European legislator expressly recognized them. In this regard, it considered that a legitimate interest could be assumed if you are a customer of our company (Recital 47, Sentence 2 of the DS-GVO).
6. Transfer of Data to Third Parties
Your personal data will not be transferred to third parties for any purposes other than those listed below.
We only share your personal data with third parties if:
- You have given your explicit consent in accordance with Article 6(1)(a) sentence 1 of the DS-GVO,
- the disclosure is permitted under Article 6(1)(f) sentence 1 of the DS-GVO to safeguard our legitimate interests, and there is no reason to assume that you have an overriding legitimate interest in the non-disclosure of your data,
- in cases where there is a legal obligation to disclose the data pursuant to Article 6(1)(c) sentence 1 of the DS-GVO, and
- the disclosure is legally permissible and necessary for the performance of a contract with you pursuant to Article 6(1)(b) sentence 1 of the DS-GVO.
7. Technology
7.1 SSL/TLS Encryption
This site uses SSL/TLS encryption to ensure secure data processing and to protect the transmission of confidential information — such as orders, login data, or contact requests that you send to us as the site operator — this website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the browser’s address bar switches from “http://” to “https://” and displays a padlock icon.
We use this technology to protect the data you transmit to us.
7.2 Data Collection When Visiting the Website
When you use our website for informational purposes only — that is, if you do not register or otherwise transmit information to us — we only collect the data that your browser sends to our server (so-called “server log files”). Each time a page on our website is accessed by you or an automated system, a set of general data and information is collected. This general data and information is stored in the server’s log files. The following may be collected:
- browser types and versions used,
- the operating system used by the accessing system,
- the website from which the accessing system reaches our website (known as the referrer),
- the subpages that are accessed on our website via the accessing system,
- the date and time of access to the website,
- a truncated Internet Protocol address (anonymized IP address),
- the Internet service provider of the accessing system.
We do not draw any conclusions about you as a person from the use of this general data and information. Rather, this information is needed to:
- deliver the content of our website correctly,
- optimize the content of our website as well as the advertising for it,
- ensure the long-term functionality of our IT systems and the technology of our website, and
- to provide law enforcement authorities with the information necessary for prosecution in the event of a cyberattack.
The data and information collected are therefore evaluated by us both for statistical purposes and with the aim of enhancing data protection and data security within our company, ultimately to ensure the highest possible level of protection for the personal data we process. The anonymous data from the server log files is stored separately from any personal data provided by a data subject.
The legal basis for data processing is Article 6(1)(f) sentence 1 of the DS-GVO. Our legitimate interest arises from the purposes of data collection listed above.
7.3 IP Address Storage and Allocation
For company policy reasons, we do not offer our services in certain countries. Therefore, we collect the IP addresses of our visitors when they access our website. This also applies when inquiries are submitted via contact form or email. The storage of IP addresses and comparison with submitted inquiries serves our legitimate interest in entering into contracts only in countries where we actively offer our services. This processing is based on Article 6(1)(f) of the DS-GVO. In cases where certain services are legally prohibited in specific countries, the storage of IP addresses is additionally based on Article 6(1)(c) of the DS-GVO. IP data is deleted no later than the legally required retention period and generally within one month of visiting our website.
8. cookies
8.1 General Information About Cookies
We use cookies on our website. These are small files that are automatically created by your browser and stored on your device (laptop, tablet, smartphone, etc.) when you visit our site.
The cookie stores information related to the specific device you are using. However, this does not mean that we gain direct knowledge of your identity.
The use of cookies serves, among other things, to make your experience with our website more convenient. For example, we use so-called session cookies to recognize that you have already visited certain pages of our website. These cookies are automatically deleted once you leave our site.
We also use temporary cookies to optimize user-friendliness. These are stored on your device for a defined period of time. If you return to our site to use our services, it will automatically recognize that you have visited us before and recall the inputs and settings you previously selected so that you don’t have to enter them again.
We also use cookies to collect statistical data on the use of our website and to evaluate it for the purpose of optimizing our services for you. These cookies allow us to automatically recognize that you have visited us before when you return to our site. These cookies are automatically deleted after a defined period of time.
8.2 Legal Basis for the Use of Cookies
The data processed through cookies that are necessary for the proper functioning of the website are required to safeguard our legitimate interests as well as those of third parties, in accordance with Article 6(1)(f) sentence 1 of the DS-GVO.
For all other cookies, your consent is obtained via our opt-in cookie banner in accordance with Article 6(1)(a) of the DS-GVO.
9. Content on Our Website
9.1 Data Processing for Order Fulfillment
The personal data we collect will be passed on to the transport company commissioned with the delivery, insofar as this is necessary for the delivery of the goods as part of contract processing. We will pass on your payment data to the financial institution commissioned with the payment processing, provided this is necessary for handling payments. If payment service providers are used, we will explicitly inform you about them below. The legal basis for the transfer of data is Article 6(1)(b) of the DS-GVO.
9.2 Contact / Contact Form
When you contact us (e.g., via contact form or email), personal data is collected. The specific data collected through a contact form can be seen directly from the respective form. This data is used exclusively for the purpose of responding to your inquiry and for the associated technical administration. The legal basis for processing the data is our legitimate interest in responding to your request in accordance with Article 6(1)(f) of the DS-GVO. If your contact is aimed at concluding a contract, the additional legal basis for the processing is Article 6(1)(b) of the DS-GVO. Your data will be deleted once your inquiry has been fully processed, provided that it can be inferred from the circumstances that the matter has been conclusively resolved and there are no statutory retention obligations.
9.3 Services / Digital Goods
We only transmit personal data to third parties when it is necessary for contract fulfillment, such as to the financial institution responsible for processing the payment.
No further transmission of your data will take place unless you have expressly consented to it. Your data will not be shared with third parties for purposes such as advertising without your explicit consent.
The legal basis for data processing is Article 6(1)(b) of the DS-GVO, which permits the processing of data for the performance of a contract or for pre-contractual measures.
10. Our Activities on Social Networks
To communicate with you and inform you about our services on social networks, we maintain our own pages on these platforms. When you visit one of our social media pages, we are jointly responsible — together with the respective social media platform provider — for the processing of personal data triggered by your visit, in accordance with Article 26 of the DS-GVO.
We are not the original provider of these platforms; we merely use them within the scope of the options made available to us by the respective providers.
We therefore point out as a precaution that your data may also be processed outside the European Union or the European Economic Area. Using these platforms may pose data protection risks for you, as it could make it more difficult to exercise your rights (e.g., to access, delete, or object to your data). Additionally, processing on social networks is often carried out directly by the platform providers for advertising purposes or to analyze user behavior, over which we have no control. When user profiles are created by the providers, cookies are often used, or your usage behavior is directly linked to your personal member profile on the social networks (if you are logged in).
The described processing of personal data is carried out in accordance with Article 6(1)(f) of the DS-GVO based on our legitimate interest — and that of the respective provider — in being able to communicate with you in a modern way and inform you about our services. If you, as a user, are required to give consent to data processing by the respective providers, the legal basis is Article 6(1)(a) in conjunction with Article 7 of the DS-GVO.
Since we do not have access to the data collected by the providers, we recommend that you exercise your rights (e.g., access, correction, deletion, etc.) directly with the respective provider. Below, we have listed further information regarding how your data is processed on the social networks we use, along with details on how to exercise your right to object or withdraw consent (so-called opt-out) with each provider:
10.1 Facebook
Joint Controller for Data Processing in Europe:
Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Privacy Policy (Data Policy):
https://www.facebook.com/about/privacy
Opt-Out and Ad Preferences:
https://www.facebook.com/ads/preferences/?entryproduct=adsettings_screen
Facebook has joined the EU-U.S. Privacy Shield agreement:
https://www.privacyshield.gov/ps/participant?id=a2zt0000000GnywAAC&status=Active
https://de-de.facebook.com/about/privacy
10.2 Instagram
Joint Controller for Data Processing in Germany:
Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Privacy Policy (Data Policy):
http://instagram.com/legal/privacy/
Opt-Out and Ad Preferences:
https://www.instagram.com/accounts/privacyandsecurity
Facebook has joined the EU-U.S. Privacy Shield agreement:
https://www.privacyshield.gov/ps/participant?id=a2zt0000000GnywAAC&status=Active
10.3 LinkedIn
Joint Controller for Data Processing in Europe:
LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland
Privacy Policy:
https://www.linkedin.com/legal/privacy-policy
Opt-Out and Ad Preferences:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
LinkedIn has joined the EU-U.S. Privacy Shield agreement:
https://www.privacyshield.gov/ps/participant?id=a2zt0000000L0UZAA0&status=Active
10.4 X
Joint Controller for Data Processing in Europe:
Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland
Privacy Policy:
Information About Your Data:
https://x.com/settings/yourtwitterdata
Opt-Out and Ad Preferences:
Twitter has joined the EU-U.S. Privacy Shield agreement:
https://www.privacyshield.gov/ps/participant?id=a2zt0000000TORzAAO&status=Active
10.5 YouTube
Joint Controller for Data Processing in Europe:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy:
https://policies.google.com/privacy
Opt-Out and Ad Preferences:
https://adssettings.google.com/authenticated
Google has joined the EU-U.S. Privacy Shield agreement:
https://www.privacyshield.gov/ps/participant?id=a2zt000000001L5AAI&status=Active
11. Web Analytics
11.1 Facebook Pixel (Custom Audience)
This website uses the “Facebook Pixel” from Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA (“Facebook”). If you have given explicit consent, this tool allows user behavior to be tracked after they have seen or clicked on a Facebook ad. This process is used to evaluate the effectiveness of Facebook ads for statistical and market research purposes and can help optimize future advertising campaigns.
The data collected is anonymous from our perspective, meaning we cannot draw any conclusions about the identity of users. However, the data is stored and processed by Facebook, making it possible to link the information to individual user profiles. Facebook may use this data for its own advertising purposes, in accordance with its Data Use Policy (https://www.facebook.com/about/privacy/) and may use it to enable Facebook and its partners to display ads both on and off the Facebook platform. A cookie may also be stored on your device for these purposes. These processing operations are carried out only if you have given your explicit consent in accordance with Article 6(1)(a) of the DS-GVO.
These processing operations are carried out solely on the basis of your explicit consent in accordance with Article 6(1)(a) of the DS-GVO.
Facebook Inc., based in the USA, is certified under the EU-U.S. Privacy Shield framework, which ensures compliance with the level of data protection required in the EU.
To disable the use of cookies on your device, you can configure your internet browser to prevent cookies from being stored on your system in the future or to delete cookies that have already been saved. However, disabling all cookies may result in some functions on our website no longer working properly. You can also opt out of the use of cookies by third-party providers such as Facebook via the following website of the Digital Advertising Alliance: https://optout.aboutads.info/?c=2&lang=EN
In addition, you can disable cookies used for reach measurement and advertising purposes via the following websites:
Please note that these settings will also be deleted if you clear your cookies.
11.2 Google Analytics
We use Google Analytics on our website, a web analytics service provided by Google Ireland Limited (https://about.google/ ) (Gordon House, Barrow Street, Dublin 4, Ireland; hereinafter referred to as “Google”). In this context, pseudonymized user profiles are created and cookies (see section “Cookies”) are used. The information generated by the cookie about your use of this website, such as:
- browser type/version,
- operating system used,
- referrer URL (the previously visited page),
- hostname of the accessing device (IP address),
- time of the server request,
This information is transmitted to a Google server in the USA and stored there. The data is used to evaluate website usage, compile reports on website activity, and provide other services related to website and internet usage for the purposes of market research and the demand-oriented design of these web pages. This information may also be transferred to third parties where required by law or where such third parties process the information on Google's behalf. Under no circumstances will your IP address be merged with other Google data. IP addresses are anonymized so that identification is not possible (IP masking).
You can prevent the installation of cookies by adjusting your browser settings accordingly; however, please note that in this case, you may not be able to use all the features of this website to their full extent.
These processing operations are carried out solely on the basis of your explicit consent in accordance with Article 6(1)(a) of the DS-GVO.
You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address), as well as the processing of this data by Google, by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=de).
As an alternative to the browser add-on — especially for browsers on mobile devices — you can also prevent the collection of data by Google Analytics by clicking the following link: **Disable Google Analytics**. This will set an opt-out cookie that prevents the future collection of your data when visiting this website. The opt-out cookie is only valid in this browser, only for our website, and is stored on your device. If you delete the cookies in this browser, you will need to set the opt-out cookie again.
For more information on data protection in connection with Google Analytics, please refer to the Google Analytics Help Center (https://support.google.com/analytics/answer/6004245?hl=de).
11.3 Google Tag Manager
We use Google Tag Manager on our website, a service provided by Google Inc. For the European region, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is responsible for all Google services. Google Tag Manager is one of many helpful marketing tools from Google. It allows us to centrally integrate and manage code snippets from various tracking tools used on our website.
In this privacy policy, we aim to explain in more detail what Google Tag Manager does, why we use it, and how data is processed in the process.
Google Tag Manager is an organizational tool that allows us to centrally integrate and manage website tags via a user interface. Tags are small snippets of code that track your activity on our website. To do this, JavaScript code is embedded into the source code of our site. These tags often originate from internal Google products such as Google Ads or Google Analytics, but tags from other providers can also be integrated and managed via the Tag Manager. These tags serve a variety of purposes — they can collect browser data, feed marketing tools with information, embed buttons, set cookies, and even track users across multiple websites.
Why do we use the Google Tag Manager on our website?
As the saying goes: good organization is half the battle! And that certainly applies to maintaining our website. To make our site as effective as possible for you — and for everyone interested in our products and services — we rely on various tracking tools, such as Google Analytics. The data collected by these tools shows us what you're most interested in, where we can improve our offerings, and which audiences we should target more effectively. For this kind of tracking to work, we need to embed certain JavaScript codes into our website. Technically, we could insert each snippet from every tracking tool manually into our source code — but that would be time-consuming and hard to keep track of. That’s why we use Google Tag Manager. It allows us to integrate the necessary scripts easily and manage them all from one central location. Plus, the Tag Manager offers a user-friendly interface and doesn’t require any programming knowledge. This helps us keep things organized in our jungle of tags.
What data is stored by Google Tag Manager?
The Tag Manager itself is a domain that does not set cookies and does not store any data. It functions purely as a “manager” of the implemented tags. The data is collected by the individual tags of the various web analytics tools. Within Google Tag Manager, the data is essentially passed through to the respective tracking tools and not stored.
However, the situation is quite different when it comes to the integrated tags of various web analytics tools, such as Google Analytics. Depending on the analytics tool, various data about your web behavior is typically collected, stored, and processed — often with the help of cookies. For more details, please refer to the privacy policy sections related to each individual analytics and tracking tool we use on our website.
In our Tag Manager account settings, we have allowed Google to receive anonymized data from us. However, this only concerns the use and operation of our Tag Manager account — not your personal data collected via the embedded code snippets. We allow Google and others to receive selected data in anonymized form. In doing so, we agree to the anonymous sharing of our website data. Despite extensive research, we were unable to determine exactly which aggregated and anonymized data is shared. In any case, Google removes all information that could identify our website. Google combines this data with hundreds of other anonymous website datasets and uses it to generate user trends as part of benchmarking activities. Benchmarking involves comparing one’s own performance with that of competitors. Based on the insights gained, processes can be optimized.
How long and where is the data stored?
When Google stores data, it is saved on Google’s own servers. These servers are distributed around the world, with most of them located in the United States. At https://datacenters.google/ you can find detailed information about the locations of Google’s servers.
The duration for which individual tracking tools store your data can be found in our specific privacy policy sections for each tool.
How can I delete my data or prevent data storage?
Google Tag Manager itself does not set cookies but manages tags from various tracking websites. In our privacy policy sections for the individual tracking tools, you will find detailed information on how you can delete or manage your data.
Please note that when using this tool, your data may also be stored and processed outside the EU. According to current European data protection law, most third countries (including the USA) are considered not to provide an adequate level of data protection. Therefore, data may not be transferred to, stored, or processed in such countries unless appropriate safeguards (such as EU Standard Contractual Clauses) are in place between us and the non-EU service provider.
Legal Basis
The use of Google Tag Manager requires your consent, which we obtained through our cookie pop-up. This consent constitutes, according to Article 6(1)(a) of the DS-GVO (consent) the legal basis for the processing of personal data, as may occur when collected by web analytics tools.
In addition to consent, we also have a legitimate interest in analyzing the behavior of website visitors in order to improve our offerings both technically and economically. Google Tag Manager helps us enhance our efficiency. The legal basis for this is Article 6(1)(f) of the DS-GVO (legitimate interests). However, we only use Google Tag Manager insofar as you have given your consent.
Google processes data from you, among other places, in the USA. Google is an active participant in the EU-US Data Privacy Framework, which regulates the proper and secure transfer of personal data of EU citizens to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.
Additionally, Google uses so-called Standard Contractual Clauses (SCCs) as per Articles 46(2) and (3) of the DS-GVO. SCCs are model contracts provided by the European Commission designed to ensure that your data continues to meet European data protection standards even when transferred to and stored in third countries (such as the USA). Through the EU-US Data Privacy Framework and these SCCs, Google commits to maintaining the European level of data protection when processing your relevant data, even if the data is stored, processed, and managed in the USA. These clauses are based on an implementing decision by the European Commission. You can find the decision and the corresponding Standard Contractual Clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de
The Google Ads Data Processing Terms, which refer to the Standard Contractual Clauses, can be found at https://business.safety.google/intl/de/adsprocessorterms/.
If you want to learn more about Google Tag Manager, we recommend the FAQs available at https://support.google.com/tagmanager/?hl=de#topic=3441530.
You can find out what data Google generally collects and how it uses this data at https://policies.google.com/privacy?hl=de .
12. Advertising
12.1 Google Ads with Conversion Tracking
We have integrated Google Ads on this website. Google Ads is an online advertising service that allows advertisers to display ads both in Google’s search engine results and across the Google Display Network. Google Ads enables advertisers to specify certain keywords in advance, so that an ad is shown in the Google search results only when a user performs a search relevant to those keywords. Within the Google Display Network, ads are distributed automatically via an algorithm and in consideration of the specified keywords on thematically relevant websites.
The operating company for Google Ads services is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The purpose of Google Ads is to promote our website by displaying interest-relevant advertisements on third-party websites and within Google’s search engine results, as well as to show third-party ads on our own website.
If you arrive on our website via a Google ad, Google places a so-called conversion cookie on your device. This conversion cookie expires after thirty days and is not used to identify you personally. As long as the cookie is valid, it tracks whether certain subpages—such as the shopping cart in an online shop system—have been accessed on our website. Through this conversion cookie, both we and Google can determine whether a user who arrived via a Google Ads ad has completed or abandoned a purchase.
The data and information collected through the use of the conversion cookie are used by Google to generate visitor statistics for our website. We use these statistics to determine the total number of users referred to us via Ads campaigns, to evaluate the success or failure of each Ads campaign, and to optimize our Ads for the future. Neither our company nor other advertisers using Google Ads receive any information from Google that could identify you personally.
Personal information, such as the websites you visit, is stored using the conversion cookie. Each time you visit our website, personal data — including the IP address of your internet connection — is transmitted to Google in the United States of America. This personal data is stored by Google in the United States. Google may share this personal data collected through the technical process with third parties.
You can prevent the setting of cookies by our website at any time by adjusting the settings of your internet browser accordingly, thereby permanently objecting to the setting of cookies. Such a browser setting would also prevent Google from placing a conversion cookie on your device. Additionally, any conversion cookie already set by Google Ads can be deleted at any time via your browser or other software programs.
Furthermore, you have the option to object to interest-based advertising by Google. To do so, you need to visit the link [www.google.de/settings/ads](http://www.google.de/settings/ads) from your internet browser and adjust your settings accordingly.
These processing operations are carried out solely on the basis of your explicit consent in accordance with Article 6(1)(a) of the DS-GVO.
Further information and Google’s applicable privacy policies can be found at https://www.google.de/intl/de/policies/privacy/ .
13. Plugins and Other Services
13.1 Google reCAPTCHA
On this website, we also use the reCAPTCHA function from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). This function primarily serves to distinguish whether an input is made by a human or abusively by automated and machine processing. The service also involves transmitting your IP address and possibly other data required by Google for the reCAPTCHA service to Google.
These processing operations are carried out solely on the basis of your explicit consent in accordance with Article 6(1)(a) of the DS-GVO.
Google Ireland Limited, based in Ireland, is certified under the EU-U.S. Privacy Shield framework, which ensures compliance with the level of data protection required in the EU.
Further information about Google reCAPTCHA as well as Google’s privacy policy can be found at: https://www.google.com/intl/de/policies/privacy/
13.2 Google WebFonts
Our website uses so-called web fonts for consistent font display, which are provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. When you load a page, your browser downloads the required web fonts into its cache to display text and fonts correctly.
For this purpose, your browser must connect to Google’s servers. This allows Google to become aware that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a consistent and appealing presentation of our website.
These processing operations are carried out solely on the basis of your explicit consent in accordance with Article 6(1)(a) of the DS-GVO.
Google Ireland Limited, based in Ireland, is certified under the EU-U.S. Privacy Shield framework, which ensures compliance with the level of data protection required in the EU.
Further information about Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/
13.3 Proven Expert
We use Proven Expert to integrate customer reviews on our website. This gives you the opportunity to rate our services on our online platform. When you submit a review, the plugin collects and stores your email address as well as technical data in a related log file, including your IP address and information about the web browser you use. Additionally, the Proven Expert plugin stores other voluntary information if you provide it.
These processing operations are carried out solely on the basis of your explicit consent in accordance with Article 6(1)(a) of the DS-GVO.
The applicable privacy policy of Expert Systems AG can be found at https://www.provenexpert.com/de-de/datenschutzbestimmungen/ .
13.4 YouTube (videos)
We have integrated components from YouTube on this website. YouTube is an internet video platform that allows video publishers to upload video clips for free and enables other users to watch, rate, and comment on these videos also free of charge. YouTube permits the publication of all types of videos, which means that full-length movies and TV shows, music videos, trailers, and user-generated videos are all accessible via the platform.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Each time you access a page on this website that includes a YouTube component (YouTube video) operated by us, your internet browser will automatically be instructed by the YouTube component to download and display the respective YouTube content from YouTube. Further information about YouTube can be found at https://www.youtube.com/yt/about/de/ . YouTube and Google receive information about which specific subpage of our website you have visited as part of this technical process.
If you are logged into YouTube at the same time, YouTube recognizes which specific subpage of our website you are visiting when you access a page containing a YouTube video. This information is collected by YouTube and Google and associated with your YouTube account.
YouTube and Google receive information via the YouTube component whenever you visit our website while logged into your YouTube account, regardless of whether you click on a YouTube video or not. If you do not want this information to be transmitted to YouTube and Google, you can prevent it by logging out of your YouTube account before visiting our website.
These processing operations are carried out solely on the basis of your explicit consent in accordance with Article 6(1)(a) of the DS-GVO.
The privacy policy published by YouTube, which can be found at https://www.google.de/intl/de/policies/privacy/ provides information about the collection, processing, and use of personal data by YouTube and Google.
13.5 Contact Form 7
The Contact Form 7 plugin is a service for creating contact forms. The Contact Form plugin is used solely for the encrypted transmission of submitted form data to our company’s email address. No additional storage, such as in the WordPress database, takes place. Further information and the applicable privacy policy of Contact Form can be found at https://de.wordpress.org/plugins/contact-form-7/ and https://rocklobster.in/ available at. Contact Form is open-source software. Communication between the browser and server takes place exclusively via HTTPS (SSL/TLS) encryption. The use of Contact Form is based on Article 6(1)(f) of the DS-GVO, i.e., due to a legitimate interest in a technical solution for our contact form. If Contact Form is used in conjunction with cookies, however, the use is based on Article 6(1)(a) of the DS-GVO, i.e., with your consent, which we obtain via the cookie consent with the corresponding plugin.
13.6 Cookie Consent
To obtain your consent for cookie storage, we use the plugin “Complianz” from Complianz BV, based in the Netherlands. You can find the details here: https://complianz.io/
The request for consent and the use of the plugin are based on our legitimate interest to enable the use of other plugins, pursuant to Article 6(1)(f) of the DS-GVO. After weighing the legal considerations, we have concluded—based on current case law—that the use of this plugin is sensible, necessary, and permissible to obtain your consent for setting cookies. You can manage and block the use of plugins through your browser settings at any time. Additionally, you always have the option to refuse your consent.
14. Your Rights as a Data Subject
14.1 Right to Confirmation
You have the right to request confirmation from us as to whether personal data concerning you is being processed.
14.2 Right to Access — Article 15 DS-GVO
You have the right to receive, at any time and free of charge, information from us about the personal data we have stored about you, as well as a copy of this data, in accordance with the applicable legal provisions.
14.3 Right to Rectification — Article 16 DS-GVO
You have the right to request the correction of inaccurate personal data concerning you. Furthermore, taking into account the purposes of processing, you have the right to request the completion of incomplete personal data.
14.4 Right to Erasure — Article 17 DS-GVO
You have the right to request that we delete personal data concerning you without undue delay, provided that one of the legally specified reasons applies and the processing or storage is no longer necessary.
14.5 Right to Restriction of Processing — Article 18 DS-GVO
You have the right to request that we restrict the processing of your personal data if one of the legal conditions applies.
14.6 Right to Data Portability — Article 20 DS-GVO
You have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used, and machine-readable format. You also have the right to transmit this data to another controller without hindrance from us, provided that the processing is based on your consent under Article 6(1)(a) or Article 9(2)(a) of the DS-GVO, or on a contract under Article 6(1)(b) of the DS-GVO, and that the processing is carried out by automated means — unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.
Furthermore, when exercising your right to data portability under Article 20(1) of the DS-GVO, you have the right to request that your personal data be transmitted directly from one controller to another, provided this is technically feasible and does not adversely affect the rights and freedoms of others.
14.7 Right to Object — Article 21 DS-GVO
You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you that is carried out pursuant to Art. 6 Abs. 1 lit. e (data processing in the public interest) or f (data processing based on a balancing of interests) DS-GVO.
This also applies to profiling based on these provisions within the meaning of Art. 4 Nr. 4 DS-GVO.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.
In individual cases, we process personal data to carry out direct marketing. You may object at any time to the processing of personal data for such advertising purposes. This also applies to profiling insofar as it is related to such direct marketing. If you object to the processing for direct marketing purposes, we will no longer process your personal data for these purposes.
Additionally, you have the right to object, for reasons arising from your particular situation, to the processing of your personal data conducted by us for scientific or historical research purposes or statistical purposes pursuant to Art. 89 Abs. 1 DS-GVO, unless such processing is necessary for the performance of a task carried out in the public interest.
You are free to exercise your right to object in connection with the use of information society services, irrespective of Directive 2002/58/EC, by means of automated procedures using technical specifications.
14.8 Revocation of Data Protection Consent
You have the right to revoke your consent to the processing of personal data at any time, with effect for the future.
14.9 Complaint to a Supervisory Authority
You have the right to lodge a complaint with a data protection supervisory authority regarding our processing of your personal data.
15. Routine Storage, Deletion, and Blocking of Personal Data
We process and store your personal data only for as long as necessary to achieve the storage purpose or as required by the legal provisions applicable to our company.
If the purpose of storage no longer applies or a prescribed retention period expires, personal data will be routinely blocked or deleted in accordance with legal requirements.
16. Duration of Storage of Personal Data
The criterion for the duration of storage of personal data is the applicable statutory retention period. After this period expires, the corresponding data will be routinely deleted unless it is still required for contract fulfillment or contract initiation.
17. Currency and Changes to the Privacy Policy
This privacy policy is currently valid and is dated: June 2025.
Due to the ongoing development of our websites and services or changes in legal or regulatory requirements, it may become necessary to amend this privacy policy. The current version of the privacy policy can be accessed at any time on the website at https://mb-seo.de/datenschutzerklaerung/ can be retrieved and printed out by you.
