Data Privacy

Privacy Policy and Consents

  1. Objective and responsible body

This data protection declaration clarifies the type, scope and purpose of the processing (including the collection, processing and use as well as obtaining consent) of personal data within our online offer and the websites, functions and contents connected with it (hereinafter jointly referred to as „online offer“ or „website“). This privacy policy applies regardless of the domains, systems, platforms and devices (e.g. desktop or mobile) on which the online offer is executed.

The provider of the online offer and the body responsible for data protection is SolaVieve Holding SA, Managing Director: Joshua Luckow, Rue De-Candole 11, 1205 Genève (Switzerland) (hereinafter referred to as „provider“, „we“ or „us“). For contact details we refer to our imprint.

The term „user“ includes all customers and visitors of our online offer. The terms used, e.g. „user“, are to be understood in a gender-neutral way.

  1. Basic information on data processing

We process personal data of users only in compliance with the relevant data protection regulations in accordance with the dictates of data economy and data avoidance. This means that user data will only be processed if a legal permit is available, especially if the data is required for the provision of our contractual services and online services, or if it is required by law or if consent is given.

We take organisational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of the data protection laws are observed and thus to protect the data processed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons.

If, in the context of this data protection declaration, content, tools or other means are used by other providers (hereinafter jointly referred to as „third-party providers“) and their registered office is abroad, it must be assumed that a data transfer to the countries where the third-party providers are based is taking place. The transfer of data to third countries is either based on a legal permission, a consent of the users or special contractual clauses which guarantee the legally required security of the data.

  1. Processing of personal data

In addition to the uses expressly mentioned in this Privacy Policy, personal data will be processed for the following purposes, based on legal permission or consent of the users:      
 – The provision, execution, maintenance, optimization and safeguarding of our services, services and user benefits;
 – The provision of effective customer service and technical support.

We only transfer the users‘ data to third parties if this is necessary for billing purposes (e.g. to a payment service provider) or for other purposes if this is necessary to fulfill our contractual obligations to the users (e.g. address notification to suppliers).

When contacting us (via contact form or email), the user’s details are stored for the purpose of processing the inquiry and in the event that follow-up questions arise.
Personal data will be deleted, provided that they have fulfilled their intended purpose and the deletion does not conflict with any storage obligations.

  1. Collection of access data

We collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the accessed website, file, date and time of access, transferred data volume, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.

We use the protocol data without allocation to the person of the user or other profile creation according to the legal regulations only for statistical evaluations for the purpose of operation, security and optimization of our online offer. However, we reserve the right to check the log data retrospectively if there is a justified suspicion of illegal use based on concrete evidence.

  1. Cookies & range measurement

Cookies are information that is transferred from our web server or web servers of third parties to the web browsers of the users and stored there for later retrieval. Users will be informed about the use of cookies in the context of pseudonymous range measurement within the scope of this data protection declaration.

The viewing of this online offer is also possible under exclusion of cookies. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Stored cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

It is possible to manage many online ad cookies from companies via the US site http://www.aboutads.info/choices or the EU site http://www.youronlinechoices.com/uk/your-ad-choices/

  1. Newsletter

In our newsletter we inform you about our services and products also described on our Website.

If you have registered for our newsletter, we will process the data you have provided with your consent in accordance with Art. 6 para. 1 sentence 1 a) GDPR in order to send you our newsletter on a regular basis. To register, it is sufficient to provide an e-mail address. All other information is provided voluntarily.

We use the so-called double opt-in procedure for registration, in which you must expressly confirm your e-mail address again in a second step after you have given your consent to receive the newsletter. Only then will the service be activated.

For legal reasons, we also save the IP address and the date of registration.

OPT-OUT: If you do not want to receive any newsletters by us in the future and/or wish to object to the analysis of your data through such newsletters please use the „unsubscribe“ link contained in each newsletter or send us an email to privacy@solavieve.com.

  1. Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Analytics uses „cookies“, which are text files placed on your computer, to help the website analyze how users use the site.

We rely on your consent to the collection of data when using cookies. If you do not agree to the use of data when you first visit our website, we will not collect your usage behaviour and other personal data that may arise during your visit to our website and therefore will not use it for usage analysis and remarketing campaigns afterwards. This also applies in this respect to third-party cookies such as the present Google Analytics plugin.

If you agree to the processing of your data within the scope of the opt-in procedure, the lawfulness of the processing of your data is based on consent in accordance with Art. 6 I 1 a) GDPR, so that we use your data within the scope of the consent given by you for the purposes of marketing and the evaluation of your usage behaviour.

The information generated by the cookie about your use of this website is usually transferred to a Google LLC server in the USA and stored there. If necessary, information on the use of this website and your IP address will be transmitted to a Google server in the USA and also stored on this server. Google LLC is a Privacy Shield certified company, so that the transmission of data to Google is not only based on your consent but also on the Commission’s adequacy decision regarding the exchange of data between the EU and the US. However, in the event that IP anonymisation is activated on this website, your IP address will be truncated by Google within member states of the European Union or in other states which are parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there.

On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage. The IP address transmitted by your browser within the scope of Google Analytics will not be merged with other data from Google, unless you have configured the web and app activity settings in the settings of a Google account in such a way that Google is allowed to merge.

Please note that if you delete your cookies, the opt-out cookie will also be deleted and may need to be reactivated by you.

Note: The above link will only work if you as the website operator have correctly inserted a corresponding code snippet on the website. You can find instructions on how to embed the code snippet here: https://www.internetwarriors.de/blog/kein-google-analytics-ohne-opt-out-cookie/ (see section: „Disabling Google Analytics with the opt-out cookie“)

Further information on the terms of use and data protection can be found at <https://marketingplatform.google.com/about/analytics/terms/de/> or <https://policies.google.com/?hl=de&gl=de>.

On our website, Google Analytics has been extended by the code „anonymizeIp“ in order to collect IP addresses anonymously (so-called IP-Masking).

  1. Google-Re/Marketing Services

We use the Google Remarketing application, a retargeting feature used by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“).

Google Remarketing allows us to display ads for and on our website customized according to visitors‘ interests so that we only show you ads that may be of interest to you.

For these purposes, when Google calls up our website, a code is executed and so-called (re)marketing tags are incorporated into the website. This means that an individual cookie file is stored on your device, which stores information about the websites you visit, the content you access, your browser and your operating system. Your IP address is also recorded. The IP address will not be merged with data from you within other offers from Google. However, Google may combine the above-mentioned information with information from other sources. If the user subsequently visits other websites, the ads tailored to his interests can be displayed.

Your data is always processed pseudonymously by Google Remarketing. This does not apply if you have expressly allowed Google to process your data without using a pseudonym. The information collected by Google Remarketing about users is transmitted to Google and stored on Google’s servers.

Further information on the use of data for marketing purposes by Google can be found on the overview page or the Google privacy policy:

Overview page: https://policies.google.com/technologies/ads?hl=de

Privacy policy: https://policies.google.com/privacy

Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law.

The legal basis for the use of Google Remarketing is the consent given by you when you access our website in accordance with Art. 6 Para. 1 S.1 a) DS-GVO. You can revoke your consent at any time with effect for the future via the cookie settings.

  1. Facebook social plugins

 Our website uses social plugins („Plugins“) of the social network facebook.com, which is operated by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland („Facebook“).

The plugins can be recognized by one of the Facebook logos or are marked with the addition „Facebook Social Plugin“. The list and appearance of the Facebook Social Plugins can be viewed here:

https://developers.facebook.com/docs/plugins/page-plugin.

We rely on your consent to the collection of data when using plugins. So if you do not agree to the use of data when you visit our website for the first time, the social plugin of the social network facebook.com will not be activated, so that data will not be transferred even if you accidentally press the buttons.

If you agree to the processing of your data by the social plugin of Facebook within the scope of the opt-in procedure, the lawfulness of the processing of your data is based on consent in accordance with Art. 6 Para. I lit. a GDPR, so that we use your data within the scope of the consent you have given for the purposes of linking to the social network.

If you then call up a website of our Internet presence that contains such a plugin, your browser will only establish a direct connection with the Facebook servers when the user activates the „Facebook“ button by clicking on it. The content of the plugin is then transmitted by Facebook to your browser, which integrates it into the website. By activating the plugin, Facebook receives the information that you have accessed the corresponding page of our website. If you are logged in to Facebook, Facebook can assign the visit to your Facebook account. If you interact with the plugins, for example, by pressing the Like button or making a comment, the corresponding information is transmitted directly from your browser to Facebook and stored there. If you are not a member of Facebook, it is still possible for Facebook to find out and save your IP address. For the purpose and scope of data collection and the further processing and use of data by Facebook, as well as your rights and setting options for protecting your privacy, please refer to the Facebook data protection information: https://www.facebook.com/about/privacy.

Information about the use of this website and your IP address is transmitted to Facebook servers in the USA and other third countries and also stored on these servers. . Facebook LL.C. USA is a Privacy Shield certified company, so that the transfer of data to Facebook servers in the USA can take place not only with your consent but also on the basis of the Commission’s adequacy finding regarding the exchange of data between the EU and the US (see also: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

In addition, Facebook has stated that it uses the standard contractual clauses of the European Union within its group structure to ensure that the data protection requirements are guaranteed for transfers to third countries (see also: https://de-de.facebook.com/policy.php -> How do we process and transfer data as part of our global services?)

  1. Facebook remarketing

The website uses the „Facebook Pixel“ remarketing feature of Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland („Facebook“). This allows users of the Website to see interest-based advertisements when visiting the social network Facebook and the process of continuing to use – the function – of also using websites. In this way, we pursue the interest of displaying advertisements relevant to you in order to make your visit to our website more interesting.

In the context of the use of cookies, we rely on your consent to the collection of data. If you do not agree to the use of data when you first visit our website, we will not collect your usage behaviour or other personal data that may arise during your visit and will therefore not use it for remarketing campaigns afterwards. This also applies to third-party cookies such as the present Facebook Pixel Plugin.

If you agree to the processing of your data within the scope of the opt-in procedure, the lawfulness of the processing of your data is based on consent in accordance with Art. 6 I 1 a) GDPR, so that we use your data within the scope of the consent given by you for marketing purposes and for the evaluation of your usage behaviour.

Due to the use of the plugin, your browser establishes a direct connection to the Facebook server. We have no influence on the processing of the data collected by Facebook due to the use of the function. To the best of our knowledge, Facebook receives the information that you have called up the subpage of our website or clicked on the advertisement. Facebook can assign this information to your account if you are registered with Facebook. If you are not registered or not logged in, Facebook may still process your IP address and other identifying information.

Information about the use of this website and your IP address is transmitted to Facebook servers in the USA and other third countries and also stored on these servers. Facebook LL.C. USA is a Privacy Shield certified company, so that the transfer of data to Facebook servers in the USA can take place not only with your consent but also on the basis of the Commission’s adequacy finding regarding the exchange of data between the EU and the US (see also: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

In addition, Facebook has stated that it uses the standard contractual clauses of the European Union within its group structure to ensure that the data protection requirements are guaranteed for transfers to third countries (see also: https://de-de.facebook.com/policy.php -> How do we process and transfer data as part of our global services?)

  1. Integration of third party services and content

It can happen that within our online offer contents or services of third party providers, such as city maps or fonts from other websites are integrated. The integration of content from third party providers always requires that the third party providers are aware of the IP address of the user, as without the IP address they would not be able to send the content to the user’s browser. The IP address is therefore necessary for the display of this content. Furthermore, the providers of the third-party content may set their own cookies and process the users‘ data for their own purposes. User profiles can be created from the processed data. We will use this content as sparingly and as far as possible to avoid data loss and will select reliable third-party providers with regard to data security.

The following presentation offers an overview of the third-party providers we use:

Google Fonts

Google Fonts can be used in different ways. The so called „Online“ mode, which connects to the Google servers as soon as the website is called, is widely used. However, for reasons of data economy and because it is technically difficult to obtain consent, the integration of fonts in „offline“ mode is preferable in order to be able to use Google fonts in a legally secure manner. More information about the differences can be found at: https://www.datenschutzbeauftragter-info.de/wie-google-fonts-GDPR-konform-werden/

If you decide to use the „online“ mode despite the legal risk, you will also find a corresponding text module for this.

For the display of external fonts we use Google Fonts in „offline“ mode. This service is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“). No data is passed on to Google servers.

Google Maps

We use a plugin of the internet service Google Maps on our website. The operator of Google Maps is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“).

We rely on your consent to the collection of data when using plugins. Therefore, if you do not consent to the use of data when you first visit our website, the Google Maps plug-in will not be activated, so that data will not be transferred even if you accidentally interact with a Google Maps plug-in.

If you agree to the processing of your data by the Google Maps plug-in within the scope of the opt-in procedure, the lawfulness of the processing of your data is based on consent in accordance with Art. 6 Para. I lit. a GDPR, so that we use your data within the scope of the consent given by you for purposes of linking to Google Maps.

In this case, information on the use of this website and your IP address will be transmitted to a Google server in the USA and also stored on this server. Google LLC is a Privacy Shield certified company, so that the transmission of data to Google takes place not only with your consent but also on the basis of the Commission’s adequacy decision regarding the exchange of data between the EU and the USA. In the context of the use of Google Maps, an agreement was concluded between us and Google LLC on joint responsibility within the meaning of Art. 26 GDPR (see: https://privacy.google.com/intl/de/businesses/mapscontrollerterms/.)

When you use Google Maps on our website, information about the use of this website and your IP address is transmitted to a Google server in the USA and also stored on this server. We have no knowledge of the exact content of the transmitted data, nor of its use by Google. In this context, the company denies the connection of the data with information from other Google services and the collection of personal data, unless you have configured the web and app activity settings in the settings of a Google account to allow Google to merge them. Google may also transfer your information to third parties after you have been instructed.

By agreeing to this when you first visit, you consent to the collection and processing of information by Google Inc. You can find out more about the privacy policy and terms of use for Google Maps here: https://www.google.com/intl/de_de/help/terms_maps/.

Youtube

Plugins of the social network YouTube are used on our website. The operator of Youtube is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

We rely on your consent to the collection of data when using plugins. If you do not agree to the use of data when you first visit our website, the plugin will not be activated by Youtube, so that data will not be transferred even if you accidentally interact with a Youtube plugin.

If you agree to the processing of your data by the Google Maps plug-in within the scope of the opt-in procedure, the lawfulness of the processing of your data is based on consent in accordance with Art. 6 Para. I lit. a GDPR, so that we use your data within the scope of the consent you have given us for purposes of linking to YouTube.

If you are on a page of our website on which such a plugin is provided, your browser only establishes a direct connection with the servers of YouTube when the user clicks on the relevant button („Extended data protection mode“). The content of the plugin is then transmitted by YouTube to your browser and integrated by it into the website. By activating the plugin, Youtube receives the information that you have called up the corresponding page of our website. Content is then transmitted from YouTube to your browser and included on the page. Youtube receives the message that you are on the corresponding page of our website. This happens even if you do not have a profile on Youtube or are not logged in. Personal data (including your IP address) is then automatically forwarded to a server of Youtube with location USA and stored.

A direct assignment on the part of Youtube only takes place if you are logged in at Youtube. A corresponding interaction takes place even if you click the corresponding button actively. The result is a publication on your Youtube account and the presentation in your contacts. Further details on how Youtube handles your personal data can be found on the following page: https://policies.google.com/privacy?hl=de&gl=de

As an application of Google LLC, Youtube is subject to the Privacy Shield certified company, so the transfer of data to Google in the USA is based on your consent as well as on the Commission’s adequacy finding regarding data exchange between the EU and the USA.

  1. User rights and deletion of data

As a person affected by the processing of personal data, you have the following rights:

You have the right to obtain confirmation as to whether personal data concerning you are being processed. If this is the case, you have the right to be informed about the personal data and to receive the information specified in Art. 15 GDPR.

You have the right to ask the data controller to correct incorrect personal data concerning you without delay and, if necessary, to complete incomplete personal data (Art. 16 GDPR).

You have the right to request the controller to delete personal data concerning you immediately if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer needed for the purposes for which it was collected (right to deletion).

You have the right to request the controller to restrict processing if one of the conditions listed in Art. 18 GDPR is met, e.g. if you have lodged an objection to processing, for the duration of the controller’s examination.

You have the right to object to the processing of personal data concerning you at any time for reasons arising from your particular situation. The controller will then no longer process the personal data unless he can demonstrate compelling reasons for processing that are worthy of protection and outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims (Art. 21 GDPR).

With regard to the exercise of your rights, you can contact us at any time using the contact options offered on our website.

Right of objection for direct mail

In individual cases we process personal data in order to carry out direct advertising. In this case you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising (Art. 21 GDPR).

If you object to processing for the purposes of direct marketing, the personal data will no longer be processed for these purposes.

The objection can be made at any time without any form requirement using one of the contact options provided in this data protection declaration or in our imprint.

Right of appeal

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of personal data concerning you is in breach of the DPA (Art. 77 GDPR). You may exercise this right before a supervisory authority in the Member State in which you are resident, your place of work or the place of the suspected infringement.

However, you can of course also contact us directly if you are dissatisfied or have questions about data protection. The quickest way to reach our internal contact person on data protection is to use the following contact details:

Joshua Luckow, Kurfürsten-Anlage 52, 69115 Heidelberg, info@solavieve.com

Obligation to provide data

In principle, there is no obligation to provide data. However, the provision of data may be necessary for the use of certain functions or for the conclusion of a contract. If you do not provide the required data, you may not be able to use certain functions or services or a contract may not be concluded.

  1. Changes to the privacy policy

We reserve the right to change the privacy policy in order to adapt it to changed legal situations or in case of changes in the service and data processing. However, this only applies with regard to declarations on data processing. Insofar as the consent of the users is required or components of the data protection declaration contain regulations of the contractual relationship with the users, the changes will only be made with the consent of the users.
Users are asked to inform themselves regularly about the content of the data protection declaration.

Status: 11.06.2020 21:44