PRIVACY POLICY

XLETIX GmbH, Bouchéstraße 12/Haus 8, Aufgang B, 12435 Berlin (hereinafter referred to as ‘XLETIX’) is the operator of the website xletix.com and would like to inform you in the following Privacy Policy in a language that everyone can understand to what extent data is collected when you use our website xletix.com and for what purpose this data is used.

Furthermore, XLETIX would like to make it clear which rights you are entitled to in this context in this policy.

In principle, every person can visit and use the website without providing personal data. If you decide to request a free training plan sent via email, subscribe to a newsletter, receive push notifications or purchase a ticket for one of our events or pre-register for the sales launch, you will have to provide us with personal information. In this case, we will collect and process the personal data you provide. This is particularly necessary in order to be able to establish contact and provide you with the requested information and to be able to issue tickets. Persons under the age of 18, however, are not permitted to register on the website or purchase event tickets without parental/guardian consent.

1. RESPONSIBILITY FOR THE PROCESSING OF YOUR PERSONAL DATA

The trust placed in us by our customers is a huge responsibility for us. All the data you entrust to us is used with the greatest care. XLETIX complies with all relevant law regarding personal information. These include the German Federal Data Protection Act (BDSG), the German Telemedia Act (TMG) and the General Data Protection Regulation (GDPR).

2. WHAT ACTUALLY IS PERSONAL DATA?

Personal data includes information such as your real name, address, email address and telephone number. Pseudonymised data, such as IP addresses or advertising cookies on your end device, including the data stored therein, are also personal data. In general, personal data is information about the personal or material context of a particular or identifiable natural person. Statistical data that cannot be directly or indirectly attributed to you, such as the popularity of our offering’s individual websites or the number of users of a website, is not personal data.

It is our duty to handle your personal data with the utmost care. Please also read our General Terms and Conditions (Terms & Conditions) in this regard.

3. GENERAL INFORMATION ON THE PROCESSING AND USE OF PERSONAL DATA WITHIN XLETIX.COM

For the purpose of system security, when you visit our website our web servers automatically and temporarily store the connection data of the computer you use, the pages you visit on our site, the date and duration of your visit, the identification data of the type of browser and operating system used as well as the website from which you visit us.
This data set consists in particular of:

the page requesting the file,

the name of the file,

the date and time of the request,

the amount of data transferred,

the access status (file transferred, not found)

the description of the type of web browser used, browser language, the operating system used and interface used

the IP address and location data of the requesting computer

The legal basis for the processing of this data is Art. 6 (1)(f) GDPR. Our legitimate interest arises from the data processing purposes described below.

We use this information to enable you to access and visit the website, continuously make technical improvements to the websites and offers and further adapt them to the needs of our users, carry out internal quality controls, detect, correct and prevent errors, malfunctions and possible misuse
compile aggregated, anonymised or pseudonymised statistics on access channels, use of the websites and the transition to websites of our partners.
The data is regularly stored for a period of three months and then automatically deleted.

4A. COLLECTION, PROCESSING AND DISCLOSURE OF PERSONAL DATA

In order to run events in a professional manner and offer a good registration process, we need various data from our customers. We store and use the information that you provide to us when you use our offer.
The safety of our participants, trust and transparency are important to us. Your login data must therefore must be truthful.

Our participants and volunteers register via the ticketing service provider ‘TicketPAY’.
To register for an event, we need all or some of the following information:
Specification of the desired ticket category as well as date and name of the event
Invoice address (if applicable, company and additional address information, street, house number, postcode, city/town), Delivery address (title, first name, surname, company and address suffix, if applicable, street, house number, postcode, town, mobile phone number),nDate of birth Contact details (mobile phone number and/or landline number),nPayment data (bank account details, credit card details)
For corporate customers who wish to receive an invoice, please also provide the VAT identification number.

Our ticket sales are handled by the service provider TicketPAY. As soon as you click on the ‘Get ticket’ button, you will be redirected to the Ticketpay Germany site.
Information about visiting their website and data protection can be found in their Privacy Policy. It is available at the following link: https://manage.ticketpay.de/documents/agb/tpeu_privacy_de.pdf

Please note that cookie settings you have made on our site may not apply on the TicketPAY site.

The data required in order to carry out each respective booking is marked in the forms themselves. It is not possible to register without providing this data. In order to ensure data is transferred securely, it is transmitted via a secure SSL connection. We have concluded a data processing agreement with TicketPAY and ensure that your data is also processed there in accordance with the legal requirements.

We use this data to establish a contractual relationship with you, to develop its content, to modify or terminate it, to fulfil our contractual obligations and to contact you, if requested by you or required within the framework of the contractual relationship or permitted by law.
You provide us with data based on the contractual relationship between you and us. In particular, we use the data in accordance with Art. 6 (1)(b) GDPR for the following purposes:

Registration for and participation in events,

to answer questions addressed to us or to use feedback tools to respond to your enquiry or record your evaluation of our offering,

to send you information about changes to the Terms and Conditions and the Privacy Policy.

If you send us messages, we also store these messages.

XLETIX will transmit your data to third parties if necessary or to answer pre-contractual requests (Art. 6 (1)(b) GDPR). In particular, we will disclose your personal information to a ticket service provider to create participation tickets.

In addition, we use your data on the basis of a balance of interests in accordance with Art. 6 (1)(f) GDPR to:

tailor our websites and our offers to you personally (see below for personalised offers),

recognise you as a user should you revisit the site and to prevent you from having to re-enter your data, for example,

carry out our statistical market research/service surveys in-house (see below),

display advertisements and offers to you that you may find interesting (or to not show advertisements to you which you are likely to find uninteresting),

inform you about new features or special offers on our sites, for example, by sending you a newsletter if you have subscribed to one (see below),

send advertising by post (if you have requested this, see below),

prevent the unlawful or abusive use of XLETIX’s services and, if necessary, to take counteractions or to resolve a dispute concerning the services arranged by XLETIX. This also applies if the user relationship has already ended. Your data is only sent to third parties in this context if XLETIX has well-founded and documented evidence of one of the cases outlined above.

We store the details of participants and volunteers for a period of ten years from the last participation. The period begins with the end of the current calendar year. Data about contact requests to our customer support or on the use of feedback tools are stored for a period of seven years after they have been answered and are then automatically deleted.

We retain the information for the statutory periods required (usually ten years from the date of posting) by commercial and tax law. These retention obligations regularly concern accounting-relevant data and the master data linked to it.

We are also required by law to provide information to certain public authorities. Examples include law enforcement agencies, fines authorities and tax authorities. Data is disclosed in accordance with Art. 6 (1)(c) GDPR.

4B. MEDIA PARTNERS AT EVENTS

Sportograf GmbH & Co. KG (web: www.sportograf.com) acts as a media partner and exclusive photo service provider at our events. If you take part in an event where the client has commissioned Sportograf as the exclusive photo service, Sportograf GmbH & Co. KG may collect video or image material on which you can be personally identified. Sportograf GmbH & Co. KG uses the data collected during the sporting events to fulfil its obligation as a photo service provider under the underlying contract with the client, as well as to act in its own commercial interest to market the event photos or videos to interested participants through its website www.sportograf.com. Due to Sportograf’s many years of experience in the field of event photography, we can state that the sporting event participants are transparently informed that Sportograf is used as an exclusive photo service provider and that every participant of such an event must expect that the client or its cooperation partner to market photos of such events as memorabilia or souvenirs. Your data will not be shared with third parties. To capture the corresponding photos, Sportograf GmbH & Co. KG only uses photographers who have pledged to observe data protection law in compliance with the EU General Data Protection Regulation.

The legal basis is our aforementioned legitimate interests in accordance with Art. 6 (1)(f) GDPR. You can object to this processing. For further information on the handling of this personal data and your right to object, please refer to the Privacy Policy at www.sportograf.com/de/privacy.

WAM – We are Mud (web: http://wearemud.de/) is also used at our events for photo and video recordings, which we then evaluate for marketing and advertising purposes.

5. NEWSLETTER

Our website provides you with the option to subscribe to one of our free newsletters. The newsletters offer training tips, provide information on current XLETIX offers, interesting product news, company news, exciting promotions, and product recommendations from our sponsors. We require your email address for the subscription. You may provide us with your name, but it is not mandatory. If you tell us your name, we will use it to address you personally.

After the subscription form is sent, we will send you a confirmation email.

Subscription only becomes effective once you have clicked the link in the confirmation email (double opt-in procedure). This information is stored in our database with the subscription’s timestamp and IP address (shortened).

Data processing in this respect is carried out in accordance with Art. 6 (1)(a) GDPR on the basis of your consent. If you do not wish to receive our newsletter, you can cancel your newsletter subscription at any time by using the unsubscribe link at the end of each newsletter email. You can also send a message in text form to our contact details below. Your email address will then be immediately deleted from the distribution system.

As long as you subscribe to the newsletter, information will be added to your file for use for advertising purposes and for service surveys (see below) carried out in accordance with Art. 6 (1)(f) GDPR. The following data is processed for this purpose:

If you open the emails of the XLETIX newsletter, click on the links it contains or send a form after clicking on a link, information about which topics are interesting to you will be saved.

When you retrieve images from newsletter emails or click on links, information on the type of end device used is detected and saved. Information on the location from which the visit occurred is determined and stored through IP address assignment.

If you access the XLETIX website via a link from an email newsletter, information about this website visit is stored, including the enquiry and order history if applicable.

If you do not wish for your data to be processed and used for advertising surveys, you may object to this at any time with effect for the future. To do this, simply send a message in text form to the contact details provided below.

6. MAILING SERVICE PROVIDERS

We use tools from the following service providers to send the newsletter and system emails:
SendinBlue: Event-related information required for participation and the newsletter are sent via SendinBlue, a newsletter distribution platform of the French provider SendinBlue SAS based at 47, rue de la Chaussée d’Antin, 75009 Paris, France.

TicketPay: the registration confirmation, the PDF ticket and information on ticket personalisation are sent by the German provider TicketPAY Europe GmbH, Neue Bahnhofstr. 1-3, 59065 Hamm, registered with the District Court Hamm HRB 9136.

SurveyMonkey: Customer experience surveys are conducted by Survey Monkey, a US polling company based in San Mateo, California, United States.

We have concluded a ‘Data Processing Agreement’ with these providers. This is a contract in which the provider undertakes to protect the data of our users, to process it on our behalf in accordance with their data protection provisions and, in particular, not to pass it on to third parties.

7. USE OF COOKIES

We use cookies and similar technologies (‘cookies’) on our website. Cookies are small text files that are stored by your browser when you visit a website. They identify the browser being used and can be recognised by web servers. Thanks to your browser, you have complete control over the use of cookies. You can delete the cookies in your browser’s security settings at any time. You can fundamentally prevent the use of cookies by making adjustments to your browser settings or to exclude this use for specific scenarios.

The use of cookies is sometimes technically essential for the operation of our website and is therefore permissible in the absence of the user’s consent. Moreover, we may possibly use cookies to offer special functions and content as well as for the purposes of conducting analyses and marketing activities. This may also include cookies originating from third-party providers (so-called third-party cookies). Such cookies, which are not a technical requirement, will be used only subject to your consent in accordance with Art. 6 (1)(a) GDPR.

Information about the purposes, providers, deployed technologies, stored data and archiving duration for individual cookies can be found under the cookie settings.

8. CONSENT MANAGEMENT TOOL

This website uses a Borlabs Cookie, which sets a technically necessary cookie (borlabs-cookie) to store your cookie preferences.

Borlabs Cookie does not process any personal data.

The borlabs-cookie cookie stores the consent you provided upon accessing the website. If you wish to revoke these consents, simply delete the cookie from your browser. If you re-enter/reload the website, you will be asked again for your cookie consent.

9. GOOGLE TAG MANAGER

We use the Google Tag Manager of Google Ireland Limited (Ireland/EU). The Google Tag Manager is used to manage our website tags via an interface. The Google Tag Manager is a cookie-less domain that does not collect or store any personal data. The Google Tag Manager merely triggers other tags, which in turn may collect data without accessing that data themselves. If a deactivation has been made at domain or cookie level (e.g. via the Consent Management Tool), this remains in place for all tracking tags implemented with the Google Tag Manager.

10. STATISTICS

GOOGLE ANALYTICS
We use the service Google Analytics and Google Universal Analytics of Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) to create anonymous profiles in order to tailor our website according to users’ needs. Google Analytics uses ‘cookies’, which are text files that are saved on your computer and that permit analysis of your use of the website. The information generated by the cookie on your use of this website is usually transferred to a server of Google in the USA and saved there. Since we have activated IP anonymisation on this website, Google will, however, shorten your IP address beforehand within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptions will the full IP address be transferred to a Google server in the USA and shortened there. Google will use this information in order to evaluate your use of the website, to compile reports on website activities and to render further services connected to website use and internet use on our behalf. The IP address submitted by your browser in the scope of Google Analytics will not be combined with any other data of Google. On behalf of the operator of this website, Google will use this information in order to evaluate your use of the website, to compile reports on your website activities and to render further services connected to website use and internet use to the website operator. Data processing for this purpose falls within our legitimate interest.

This website uses Google Analytics with the extension “_anonymizeIp()”. This means that IP addresses are processed in abbreviated form, which means that they cannot be linked to a specific person.

Google Universal Analytics makes its possible for us to assign data about sessions and interactions across several devices to a pseudonymous user ID and thus to analyse the activities of a user across all devices.

Google Analytics is used in accordance with the conditions on which the German data protection authorities have agreed with Google. Information from the European representative of Google Inc: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

User conditions: http://www.google.com/analytics/terms/de.html, privacy overview: http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the Privacy Policy: http://www.google.de/intl/de/policies/privacy.

You can object to the creation of the pseudonymous user profiles at any time. There are several ways to do this:

1.) One option to object to Google Analytic’s web analysis is to set an opt-out cookie which instructs Google not to process your data for web analytical purposes. You can prevent Google Analytics from using your data by using a browser add-on that disables Google Analytics JavaScript (ga.js, analytics.js, dc.js). If you would like to download the browser add-on, please click here.

2.) You can set your browser software in such a manner as to prevent the storage of the cookies used to generate user profiles. We would, however, like to point out that if you do this, you may not be able to properly use all the functions of this website.

Hotjar
Our website uses a plug-in from the provider Hotjar Ltd. (St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, “Hotjar”) through which we perform an analysis of movements on our website using so-called ‘heat maps’. For example, we can see how far users scroll and which buttons users click on how often. The tool also allows us to obtain feedback directly from users of the website. In this way, we obtain valuable information to make our website even faster and more customer friendly. With Hotjar, we can only track which buttons are clicked, the course of the mouse, how far it scrolls, the screen size of the device, device type and browser information. We also receive information about your geographic location (country) and the preferred language for displaying our website. Areas of the websites where your personal data or third-party data are displayed are automatically hidden by Hotjar and therefore cannot be traced by the tool at any time. The use of this service is based on the legal basis of Art. 6 (1)(f) GDPR and serves the legitimate interest of designing our website to meet demand and requirements as closely as possible. You can object to the data processing at any time. To do this, you can use a browser extension that blocks tracking services or prevent cookies from being stored via your browser settings. You can also prevent Hotjar from collecting your data when you visit a Hotjar-based website by visiting this page: https://www.hotjar.com/opt-out and clicking ‘Disable Hotjar’. For more information on Hotjar’s Privacy Policy, please visit the following website: https://www.hotjar.com/legal/policies/privacy.

11. MARKETING

Facebook Pixel
We use Facebook Pixel on our website, a Facebook business tool from Facebook Ireland Limited (Ireland, EU). For information on Facebook Ireland’s contact details and the contact details of Facebook Ireland’s Data Protection Officer, please see Facebook Ireland’s Privacy Policy at www.facebook.com/about/privacy.

Facebook pixel is a JavaScript code snippet that allows us to track visitor activities on our website. This type of tracking is called ‘conversion tracking’. Facebook Pixel collects and processes the following information (so-called event data) for this purpose:

Information about the actions and activities of visitors to our website, such as searching for and viewing a product or purchasing a product;

Specific pixel information, such as the pixel ID and the Facebook cookie;

Information about buttons clicked by website visitors;

Information present in the HTTP header, such as IP addresses, information about the web browser, the site location and the referrer;

Information on the status of disabling/restricting ad tracking.

Some of this event data is information that is stored in the end device you are using. In addition, Facebook Pixel also uses cookies to store information on the end device you are using. Such storage of information by the Facebook Pixel or access to information that is already stored in your end device only takes place with your consent.

Tracked conversions appear in the dashboard of our Facebook Ads Manager and Facebook Analytics. We are able to use the tracked conversions there to measure the effectiveness of our ads, to set Custom Audiences for ad targeting, for Dynamic Ads campaigns and to analyse the effectiveness of our website’s conversion funnels. The features we use through Facebook Pixel are described in more detail below.

Processing of event data for advertising purposes
Event data collected through the Facebook Pixel is used to target our ads and improve ad delivery, personalise features and content, and improve and secure Facebook products.

To do this, event data is collected on our website using the Facebook Pixel and transmitted to Facebook Ireland. This only takes place if you have previously given your consent for this purpose. The legal basis for our collection and transmission of personal data to Facebook Ireland is therefore Art. 6 (1)(a) GDPR.

This collection and transmission of event data is carried out by us and Facebook Ireland as joint controllers. We have concluded a joint controller agreement with Facebook Ireland which sets out the distribution of data protection obligations between us and Facebook Ireland. In this agreement, we and Facebook have agreed, among other things,
that we are responsible for providing you with all information pursuant to Art. 13, 14 GDPR about the joint processing of personal data;
that Facebook Limited is responsible for enabling data subjects’ rights under Articles 15 to 20 GDPR in respect to the personal data held by Facebook Ireland following joint processing.
You can access the agreement concluded between us and Facebook Ireland at www.facebook.com/legal/controller_addendum.

Facebook Ireland is the sole controller of the subsequent processing of the submitted event data. For further information on how Facebook Ireland processes personal data, including the legal basis on which Facebook Ireland relies and how you can exercise your rights against Facebook Ireland, please refer to Facebook Ireland’s Privacy Policy at www.facebook.com/about/privacy.

Processing of event data for analysis purposes
We have also engaged Facebook Ireland to report on the impact of our advertising campaigns and other online content based on the event data collected through the Facebook Pixel (campaign reports) and to provide analysis and insights about users and their use of our website, products and services (analytics). We transfer personal data contained in the event data to Facebook Ireland for this purpose. As our processor, Facebook Ireland will process the personal data submitted to provide us with the campaign reports and analytics.

Personal data will only be processed to provide analytics and campaign reports if you have given your prior consent to do so. The legal basis for this processing of personal data is therefore Art. 6 (1)(a) GDPR.

A transfer of data to Facebook Inc. in the USA cannot be ruled out. The legal basis for this transfer is the standard contractual clauses for the transfer of personal data to processors in third countries. Please note the information in the section ‘Data transfer to third countries’.

Google Marketing Services
We use the Google Ads Conversions marketing service provided by Google Ireland Limited (Ireland/EU). Google Ads allows us to place ads relevant to users on the Google advertising network (e.g. in search results, or on other websites), improve campaign performance reports and avoid serving ads to a user repeatedly. Each Ads client sets a different conversion cookie. As a result, these cookies cannot be tracked across the websites of different Ads clients. A cookie ID is used to record which ads are played in which browser. Repeated display of the same campaign can therefore be prevented. In addition, cookie IDs can be used to track conversions, i.e. whether a user sees an ad and later visits the advertiser’s website and makes a purchase.
Remarketing allows us to target users who have already interacted with our website. In doing so, our ads are delivered when this target group visits a Google website or a website in the Google advertising network. For these purposes, a code is executed by Google when our website is called up and so-called (re)marketing tags are integrated into the website. With their help, an individual cookie is stored on the user’s device. The cookies can be set by various domains, including google.com, doubleclick.net, googlesyndication.com or googleadservices.com. This file records which websites users have visited, what content they are interested in and which offers were used. Technical information on the browser and operating system, referring websites, time of visit and other details on the use of the online offer are also stored. All user data is processed only as pseudonymous data and does not contain any information with which we can personally identify users. The advertisements displayed are therefore not specifically displayed for a person, but for the owner of the cookie.

Further information on these processing activities, the technologies used, stored data and the storage period can be found in the cookie settings. Google Marketing Services are only used with your consent in accordance with Art. 6 (1)(a) GDPR.

In the case of Google services, the transmission of data to Google Inc. in the USA cannot be ruled out. Please note the information in the section ‘Data transfer to third countries’. For further information on data protection at Google, please refer to Google’s Privacy Policy at www.google.com/policies/privacy.

Microsoft Advertising
We use Universal Event Tracking (UET) on our website via the Microsoft Advertising (formerly Bing Ads) service from Microsoft Corporation (USA). Microsoft stores a cookie in the user’s browser via UET in order to enable analysis of the use of our online offer. The prerequisite for this is that the user has reached our website via an advertisement from Microsoft Advertising. In this way, Microsoft and we can recognise that someone clicked on an ad, was redirected to our online offer and reached a predetermined target page (so-called conversion measurement). No IP addresses are saved here. No personal information about the identity of the user will be disclosed.

Further information on these processing activities, the technologies used, stored data and the storage period can be found in the cookie settings. Microsoft Advertising is only used with your consent in accordance with Art. 6 (1)(a) GDPR.

In the case of Microsoft services, the transmission of data to the USA cannot be ruled out. Please note the information in the section ‘Data transfer to third countries’. For further information on data protection at Google, please refer to Microsoft’s Privacy Statement at privacy.microsoft.com/en/privacystatement.

Outbrain
We use the Outbrain Amplify service from Outbrain Inc. (USA) on our website. This enables us to draw your attention to further content that may also be of interest to you on our website or on third-party websites. The content is selected and delivered by Outbrain. Outbrain uses cookies that are stored in the user’s browser to display this content. Outbrain assigns a UUID (unique user ID) to every reader who interacts with the Outbrain widget (which contains the customer content). The UUID is an anonymised IP address (the last octet of the IP address is removed). This UUID is attached to the reader’s browser and varies depending on which browser is used. As such, a user can have multiple UUIDs. Using the UUID, Outbrain catalogues and analyses the content that the UUID consumes on partner sites in order to recommend further relevant content for this specific UUID.

We use the Outbrain pixel from Outbrain Inc. on our website (USA) on our website. This enables us to provide analytics related to our campaigns (ads) and advanced targeting functions. The pixel records which UUID (unique user ID) has interacted on pages on which the pixels are installed, as well as the relevant timestamp, the referring source and the fact that a conversion has taken place. The pixel only tracks activity on an anonymous basis. The pixel does not track or collect any personal data, but only checks whether a UUID is stored in the user’s browser. If this is the case, we can display our ads in the Outbrain network to such UUIDs (retargeting). If no UUID is found, the Outbrain Pixel does not collect any information.

Further information on these processing activities, the technologies used, stored data and the storage period can be found in the cookie settings. Outbrain can only be used with your consent in accordance with Art. 6 (1)(a) GDPR.

In the case of Outbrain services, the transmission of data to the USA cannot be ruled out. Please note the information in the section ‘Data transfer to third countries’. For further information on data protection at Outbrain, please refer to Outbrain’s Privacy Policy at www.outbrain.com/legal/privacy.

TikTok
We use the so-called ‘TikTok pixel’ of the provider TikTok (for the EU: TikTok Information Technologies UK Limited, Aviation House, 125 Kingsway Holborn, London, WC2B 6NH) on this website. This is a code that we have implemented on our site. With the help of this code, a connection is established with the TikTok servers when you visit our website, provided that you have given express consent, in order to track your behaviour on our website. For example, when you purchase a product on our website, the TikTok pixel is triggered and stores your actions on our website in one or more cookies. You have the possibility to revoke your consent at any time with effect for the future. No additional costs shall be incurred for this other than the basic rates.

Personal data such as IP address and other information such as device ID, device type and operating system may also be transmitted to TikTok. TikTok uses email or other login or device information to identify users of our website and associate their actions with a TikTok user account.

TikTok uses this data to display targeted and personalised advertising to its users and to create interest-based user profiles. The data collected from users is anonymous and not visible to us and is only used to measure the effectiveness of ad placements.

In principle, your data collected is processed within the EU or the EEA. A corresponding data protection agreement has been concluded with TikTok for this purpose. Where personal data is transferred outside the EU/EEA, this is done in accordance with standard contractual clauses for data transfers between EU and non-EU countries. (i.e. standard contractual clauses).
TikTok’s Privacy Policy is available here: https://www.tiktok.com/legal/new-privacy-policy?lang=de-DE

LinkedIn Insight Tag
We use the ‘LinkedIn Insight Tag’, a service of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. The Inside Tag places a cookie in your web browser. The cookie can record the URL, referrer URL, device properties, browser properties and actions on our website (e.g. which sub-page was accessed). The data is encrypted by LinkedIn and anonymised within seven days. The data is deleted after 90 days.

LinkedIn does not share any personal data with us.

We only receive anonymised reports on the website audience and ad performance. The Insight Tag also makes retargeting possible. This enables us to advertise in a targeted manner outside of our website on Linkedin.com, without identifying the website visitor.

If you have an account on LinkedIn, you can control the use of your personal data for advertising purposes in your account settings. You can deactivate the Insight Tag by clicking ‘Opt-out’.

For further information on data protection at LinkedIn, please refer to LinkedIn’s Privacy Policy at: https://de.linkedin.com/legal/privacy-policy
The cookie and the associated processing of the data will only be carried out if you have given your explicit consent to do so. The legal basis in this case is Art. 6 (1)(a) GDPR. You can also object to the processing at any time by revoking your consent.

Pinterest
We use the so-called ‘Pinterest Tag’ from the social network Pinterest Ltd., Pinterest Europe Limited, 2nd Floor, Palmerston House, Fenian Street, Dublin 2, Ireland (Pinterest). The ‘Pinterest tag’ is used to analyse the effectiveness of our campaigns on Pinterest. As such, we and Pinterest record your IP address and conversions, such as access of certain pages on our website, to transmit them to Pinterest.

The legal basis for processing is our legitimate interest pursuant to Art. 6 (1)(1)(f) GDPR.
In order to provide Pinterest ads in Europe, Pinterest Europe Limited transmits data to Pinterest Inc. in the United States, including data provided by advertisers via the ‘Pinterest Tag’.

The further processing of the data transmitted to Pinterest, including the transfer to the USA, is the sole responsibility of Pinterest under data protection law. Further information on the Pinterest Tag is available here: https://help.pinterest.com/de/business/article/track-conversions-with-pinterest-tag, https://policy.pinterest.com/de/ad-data-terms, https://policy.pinterest.com/de/privacy-policy.

12. CONTENTS

YouTube
We use the YouTube service of Google Ireland Limited (Ireland, EU) on our website to integrate videos. The processing of your IP address is required for technical reasons to enable this integration so that the content can be sent to your browser. Your IP address is therefore transmitted to Google, and Google may set its own cookies. We use YouTube in ‘privacy-enhanced mode’ so that no cookies are set by YouTube to analyse user behaviour.

Further information on these processing activities, the technologies used, stored data and the storage period can be found in the cookie settings. YouTube is used only with your consent pursuant to Art. 6(1)(a) GDPR.

In the case of YouTube, the transmission of data to Google Inc. and YouTube LLC in the USA cannot be ruled out. Please note the information in the section ‘Data transfer to third countries’. For further information on data protection at Google, please refer to Google’s Privacy Policy at www.google.com/policies/privacy.

13. CUSTOMER SERVICE AND SERVICE SURVEYS

We also use your data (email address, name, any other data voluntarily provided, transaction data for enquiries and orders on our website) for customer service, service surveys and for market research purposes so that the schauinsland Muddy Angel Run offer can be further improved. This processing of data is also based on a balance of interests in accordance with Article 6 (1)(f) GDPR.

You can object to the processing of your data for customer service, service surveys and market research at any time. To do this, simply send a message in text form to the contact details provided below.
To respond to enquiries, send surveys of services to participants and volunteers, and to receive the email addresses of these individuals, the following vendor tools are used:

Zendesk
This website uses Zendesk’s online ticketing system, Zendesk, Inc., 1019 Market Street, San Francisco, CA 94103, USA. The service is used to manage enquiries made by email, through direct messages on social networks, via the contact form or through chat on our website.

SurveyMonkey
Service surveys for participants and volunteers will be sent via email by SurveyMonkey Europe
2nd Floor, 2 Shelbourne Buildings, Shelbourne Road, Dublin, Ireland. SurveyMonkey is a provider of web-based survey solutions.

We have concluded a ‘Data Processing Agreement’ with these providers. This is a contract in which the provider agrees to protect the data of our users, to process it on our behalf in line with data protection regulations, and not to disclose such information to third parties.

14. RIGHT OF ACCESS, RIGHT TO RECTIFICATION, MODIFICATION AND ERASURE OF YOUR DATA; RIGHT TO OBJECT

Upon request, XLETIX will provide you with information concerning the personal data XLETIX stores about you and how it will be used. For this purpose, XLETIX reserves the right to verify the identity of the applicant to ensure that this information is provided only to an authorised person. If your data stored at XLETIX is incorrect, XLETIX will correct it. When certain prerequisites are met, you also have the right to have the data stored by XLETIX in relation to your person blocked or erased. To do this, you can write to XLETIX at the address provided below or contact us in any other way. You also have the right to data portability in accordance with Art. 20 GDPR. Furthermore, you have the right to lodge a complaint with the competent data protection authority in accordance with Art. 77 GDPR. In the case of XLETIX, this competent authority is Berlin Commissioner for Data Protection and Freedom.

The general right of objection in accordance with Art. 21 (1) GDPR also applies to all processing of data outlined in this data protection information, which is based on Art. 6 (1)(f) GDPR. In contrast to the right to object to the processing of data for direct marketing purposes in accordance with Art. 21 (2) GDPR, we are only obliged to implement such a general objection if you give us reasons of superior importance (e.g. a possible danger to life or health).

15. CONTACT DATA / QUESTIONS REGARDING DATA PROTECTION

Please direct any questions you may have regarding the protection of personal data on xletix.com to:
XLETIX GmbH
Data Protection Officer
Wrangelstrasse 100
10997 Berlin
Email: [email protected]

Last updated: 29 July 2019