Privacy Policy
With this privacy policy, tolingo GmbH (hereinafter: “we” or “us”) would like to inform you about the processing of your personal data (hereinafter also simply referred to as “data”) when you visit the website https://www.beglaubigung24.de and make use of our services.
You will also receive information about your rights. We take the protection of your personal data and your privacy very seriously and, of course, comply with the applicable data protection regulations, in particular the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
If you do not understand terms used in this privacy policy, our explanations under “Help with data protection terms” may be helpful. If you have any questions about data protection, you are also welcome to contact us (informally) using the contact details provided below.
The controller responsible for data processing is:
Tolingo GmbH, Kühnehöfe 3, 22761 Hamburg,
Tel. +49 0 40 413 583 100, service@tolingo.com
Managing Director: Jens Völkel
You can reach the data protection officer of Tolingo GmbH at the following contact details:
E-mail: datenschutzbeauftragter@tolingo.com
Herting Oberbeck Datenschutz GmbH
Hallerstr. 76, 20146 Hamburg
https://www.datenschutzkanzlei.de
Right of withdrawal and right to object
Withdrawal of your consent to data processing and right to object to data collection in specific cases and to direct marketing (Art. 21 GDPR)
Many data processing operations are only possible with your explicit consent or a legitimate interest in accordance with Art. 6 (1) (f) GDPR.
You may withdraw consent that you have already given at any time. A simple informal notification by e-mail to datenschutz@tolingo.com is sufficient for this purpose. The lawfulness of the data processing carried out up until the withdrawal remains unaffected by the withdrawal.
Right to object to data collection in specific cases and to direct marketing (Art. 21 GDPR)
If data processing is carried out on the basis of Art. 6 (1) (e) or (f) GDPR, you have the right, at any time and for reasons arising from your particular situation, to object to the processing of your personal data; this also applies to profiling based on these provisions. The respective legal basis for processing can be found in this privacy policy. If you object, we will no longer process your affected personal data unless we can demonstrate compelling legitimate grounds for processing that override your interests, rights and freedoms, or processing serves the establishment, exercise or defence of legal claims (objection pursuant to Art. 21 (1) GDPR).
If your personal data is processed for the purposes of direct marketing, you have the right to object at any time to the processing of your personal data for such marketing; this also applies to profiling, insofar as it is associated with such direct marketing. If you object, your personal data will subsequently no longer be used for direct marketing purposes (objection pursuant to Art. 21 (2) GDPR).
If you wish to exercise your right to object, it is sufficient to send an e-mail to datenschutz@tolingo.com.
Data processing in connection with your visit to our website
In connection with your visit to this website, we process personal data about you. As a rule, you can visit our website without providing personal data. Our website is designed to collect as little data from you as necessary. Data is collected for the purposes described below and to the extent described below. We will only pass your data on to third parties as described below.
Collection and processing of personal data
Provision of our website
This website is operated by Shopify International Limited, Victoria Buildings, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland (hereinafter: “Shopify”).
Shopify is a provider for creating and hosting websites and online shops. When you visit our website, Shopify records your IP address as well as information about the device and browser you use. Shopify also analyses visitor numbers, visitor sources and customer behaviour, and creates user statistics. If you make a purchase on our website, Shopify also records your name, your e-mail address, shipping and billing addresses, payment data and other data related to the purchase (e.g. telephone number, amount of transactions, etc.). For analysis purposes, Shopify stores cookies in your browser.
For details, please refer to Shopify’s privacy policy: https://www.shopify.de/legal/datenschutz.
The use of Shopify is based on Art. 6 (1) (f) GDPR. Our legitimate interest arises from the purposes of data processing listed above, in order to be able to offer you our website and the services provided via it in a technically flawless, secure and needs-based manner. If corresponding consent is requested, processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR; consent may be withdrawn at any time.
Quotes and orders
To process orders, we collect and process the following data that is required for the proper fulfilment of a mutual contract. We only collect and process your personal data if you voluntarily provide it to us with your knowledge. This includes:
- First and last name
- Shipping and billing address: street, postcode, town/city, country
- E-mail address
The legal basis for processing your data for ordering/commissioning purposes is Art. 6 (1) (a) GDPR on the basis of your voluntarily granted consent and Art. 6 (1) (b) GDPR for the performance of the contract. The personal data we collect is stored until the end of the statutory retention period and then deleted, unless we are required to store it for a longer period in accordance with Art. 6 (1) sentence 1 (c) GDPR due to tax or commercial retention and documentation obligations (from the German Commercial Code, Criminal Code or Fiscal Code) or you have consented to storage beyond this in accordance with Art. 6 (1) sentence 1 (a) GDPR.
Marketing
For marketing purposes by e-mail in the form of offers and similar communications, we use the e-mail addresses of our existing customers, i.e. only those who already have a business relationship with us. This processing is based on Art. 6 (1) sentence 1 (f) GDPR in conjunction with § 7 (3) German Unfair Competition Act (UWG). Our legitimate interest lies in being able to contact our existing customers for marketing purposes in a simple and cost-effective way. This is carried out in compliance with the requirements of § 7 (3) UWG.
You have the right to object at any time to the use of your e-mail address for these purposes. Please send your objection by e-mail to datenschutz@tolingo.com.
Translation
The client sends us files to be translated, which we store and make available to the translator for processing. Unless otherwise agreed, tolingo also uses freelance service providers, who may also be located outside the EU. After completion of the project, source and target files are stored within the statutory retention periods.
The legal basis for processing the documents you provide for translation is Art. 6 (1) (b) GDPR.
Use of cookies
We use so-called cookies on our website. Most of the cookies we use are automatically deleted from your hard drive at the end of the browser session (end of the session) (so-called session cookies). However, there are also cookies that remain on your hard drive. On your next visit, it is then automatically recognised that you have already visited us and which entries and settings you prefer (so-called long-term cookies). These long-term cookies mean that you do not have to re-enter your password or fill out forms with your data for subsequent orders.
You can deactivate the use of cookies in your browser settings. However, if you do not use cookies, some functions of our website may only work to a limited extent or not as usual for you.
The legal basis for processing your data in the form of cookies is Art. 6 (1) sentence 1 (f) GDPR.
Use of tracking and analysis services
Google Analytics
This website uses Google Analytics, a web analysis service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).
Google Analytics also uses cookies, i.e. text files that are stored on your computer and enable analysis of how you use the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.
IP anonymisation has been activated on our website, so that your IP address is shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area before being transmitted. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. In these exceptional cases, processing is carried out on the basis of Art. 6 (1) (f) GDPR, on the basis of our legitimate interest in the statistical analysis of user behaviour for optimisation and marketing purposes.
On our behalf, Google will use this information to evaluate your use of the website, to compile reports on website activities and to provide us as the website operator with further services associated with website use and internet use. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
You can prevent the storage of cookies by selecting the appropriate settings in your browser software. However, we would like to point out that in this case you may not be able to use all functions of this website in full. Furthermore, you can prevent the collection of data generated by the cookie and relating to your use of the website (including your IP address) by Google as well as the processing of this data by Google by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
Alternatively, you can prevent collection by Google Analytics by setting a so-called “opt-out cookie” by clicking here. If you delete cookies in your browser, you will need to click this link again afterwards.
Google LLC, headquartered in the USA, is certified under the EU-US Privacy Shield, which ensures compliance with the data protection level applicable in the EU.
You can find more information on how Google Analytics handles user data in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=de
Google Ads
In order to record the use of our website statistically and to optimise our website, we use Google Ads and Google Conversion Tracking. Google Ads is an online advertising programme of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). In this context, a cookie is set on your computer by Google Ads if you have reached our website via a Google ad.
These cookies usually lose their validity after 30 days and are not intended to personally identify you. If the user visits certain pages of the website of the Ads customer and the cookie has not yet expired, Google and the customer can recognise that the user clicked on the ad and was redirected to this page.
Each Ads customer receives a different cookie. Cookies can therefore not be tracked across the websites of Ads customers. The information collected using the conversion cookie is used to create conversion statistics for Ads customers who have opted for conversion tracking. The Ads customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.
The storage of “conversion cookies” is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in analysing user behaviour in order to optimise both our website and our advertising.
If you do not wish to participate in the tracking procedure, you can also reject the setting of the cookie required for this – for example, by setting your browser to generally deactivate the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser so that cookies from the domain “www.googleadservices.com” are blocked. You can find Google’s privacy information on Google Ads and conversion tracking at https://policies.google.com/privacy
Google Remarketing
Our website uses the remarketing function of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).
The function is used to present interest-based advertisements to website visitors within the Google advertising network. A so-called “cookie” is stored in the browser of the website visitor, which enables the visitor to be recognised when visiting websites that belong to the Google advertising network. On these pages, the visitor may be presented with advertisements that relate to content that the visitor has previously viewed on websites that use Google’s remarketing function.
The use of Google Remarketing is based on Art. 6 (1) (f) GDPR. There is a legitimate interest in analysing user behaviour in order to optimise both the web offering and advertising.
According to its own statements, Google does not collect any personal data in this process. If you nevertheless do not wish to use Google’s remarketing function, you can deactivate it in general by selecting the appropriate settings at www.google.com/settings/ads
Further information about Google Remarketing and Google’s privacy policy can be found at: www.google.com/privacy/ads/
If users have consented to their web and app browsing history being linked by Google to their Google account and information from their Google account being used to personalise ads they see on the web, Google uses data of these logged-in users together with Google Analytics data to create and define target group lists for cross-device remarketing. To support this function, Google Analytics collects Google-authenticated IDs of these users. These personal data from Google are temporarily linked with our Google Analytics data in order to create target groups.
Google Campaign Manager
This website uses the online marketing tool Campaign Manager from Google. Google Campaign Manager is a programme of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”)
Campaign Manager uses cookies to show you ads that are relevant to you. A pseudonymous identification number (ID) is assigned to your browser to check which ads have been displayed in your browser and which ads have been viewed. The cookies do not contain any personal information. The use of these cookies enables Google and its partner websites to only display ads based on previous visits to our or other websites on the internet. The information generated by the cookies is evaluated by Google and transmitted to a server in the USA and stored there. Google complies with the data protection provisions of the “Privacy Shield” agreement and is registered with the US Department of Commerce’s “Privacy Shield” programme.
The use of Google Campaign Manager is based on Art. 6 (1) (f) GDPR. There is a legitimate interest in analysing user behaviour in order to optimise both the web offering and advertising.
You can prevent the storage of cookies by selecting the appropriate settings in your browser software; furthermore, you can prevent the collection of data generated by the cookies and related to your use of the websites by Google as well as the processing of this data by Google by installing the browser plugin available under the following link https://adssettings.google.com/.
You can find further information about Campaign Manager at https://www.google.de/doubleclick and about data protection at Google in general at: https://www.google.de/intl/de/policies/privacy
Google Tag Manager
The use of the Google Tag Manager service merely enables us to integrate the services listed by implementing the other cookies/tags. Google Tag Manager does not collect any personal data.
Microsoft Clarity
We work with Microsoft Clarity and Microsoft Advertising to capture how you use and interact with our website through behavioural metrics, heatmaps and session replays, in order to improve and market our products/services. Website usage is recorded using first- and third-party cookies and other tracking technologies to determine the popularity of products/services and online activities. In addition, we use this information for website optimisation, fraud/security purposes and advertising. For more information on how Microsoft collects and uses your data, please visit the Microsoft Privacy Statement.
Hubspot
Tolingo gmbH uses HubSpot, a service of HubSpot Inc., on its websites for analysis purposes. In this context, so-called “tracking pixels” are used and “cookies” are also set, which are stored on your computer and enable us to analyse your use of the website. The information collected (e.g. IP address, geographic location, browser type, duration of visit and pages viewed) is evaluated by HubSpot on behalf of Tolingo in order to generate reports about visits and pages visited at Tolingo.
If you generally do not wish HubSpot to collect data, the storage of cookies can be prevented at any time by appropriate browser settings. Further information on how HubSpot works can be found in the privacy policy of HubSpot Inc., available at: http://legal.hubspot.com/de/privacy-policy
Your rights
Right of access
In accordance with Art. 15 GDPR, you have the right to obtain information from us about whether and which data we process about you. This also includes information on how long and for what purposes we process the data, where it comes from and to which recipients or categories of recipients we disclose it. You can also request a copy of this data from us.
Right to rectification
In accordance with Art. 16 GDPR, you have the right to have incorrect or no longer correct information about you rectified by us without delay. You may also request that your incomplete personal data be completed. Where required by law, we will also inform third parties of this rectification, provided we have disclosed your data to them.
Right to erasure (“right to be forgotten”)
In accordance with Art. 17 GDPR, you have the right to demand the immediate erasure of your personal data by us if one of the reasons listed in Art. 17 GDPR applies.
Right to restriction of processing (blocking)
In accordance with Art. 18 GDPR, you have the right to demand that we restrict the processing of your personal data if one of the conditions in Art. 18 GDPR is met.
Right to withdraw consent
In accordance with Art. 7 (3) GDPR, you may revoke any consent you have given us at any time with effect for the future. This withdrawal can be made in the form of an informal notification to the above contact addresses.
Right to data portability
In accordance with Art. 20 GDPR, you have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format, and to transmit this data to others. Details and restrictions can be found in Art. 20 GDPR. Exercising this right does not affect your right to erasure.
Right to lodge a complaint with a supervisory authority
In accordance with Art. 77 GDPR, you have the right to lodge a complaint with one of the competent supervisory authorities or the supervisory authority in the member state of your residence, your place of work or the place of the alleged infringement if you believe that the processing of personal data concerning you violates the provisions of the GDPR.
Right to object
In accordance with Art. 21 GDPR, you have the right to object at any time to the processing of your personal data. If the conditions for an effective objection are met, we will no longer process your personal data.
Exercising your rights
To exercise your rights, please contact the following office (informally is sufficient):
E-mail: datenschutz@tolingo.com
Help with data protection terms
In this privacy policy, we use a number of terms that are also used by legislators, in particular in the European General Data Protection Regulation (GDPR). Since it is important to us that this privacy policy is understandable for you, we explain some key terms below:
Processor: This is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
Data subject: This is any identified or identifiable natural person whose personal data is processed by the controller responsible for the processing.
Browser: This is a programme used to display websites on the internet.
Cookies: Cookies are small files that are stored on your data carrier and store certain settings and data for exchange with your browser, unless you prevent this by technical settings. Cookies enable the websites and servers visited to distinguish your individual browser from other internet browsers. A specific internet browser can therefore be recognised and identified via the unique cookie ID. This makes it easier for you to use our website, because you only have to enter certain data once, for example. Where possible, we use cookies that are deleted when you close your browser (so-called session cookies). In addition, we use cookies that are stored on your computer for a longer period of time (so-called persistent cookies). In addition to configuring your browser so that it does not accept cookies, you can delete cookies that have already been set at any time via an internet browser or other programmes. Please note, however, that not using cookies may mean that not all functions of our website or services can be used in full.
Third party: This is any natural or legal person, public authority, agency or other body which is authorised to process personal data.
Consent: This is any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
Recipient: This is a natural or legal person, public authority, agency or other body to which personal data is disclosed, whether or not it is a third party.
IP address: This is an address that is assigned to your device (e.g. smartphone or computer) on the internet so that your device can be addressed and reached there.
Personal data: This is any information relating to an identified or identifiable natural person (also referred to as “data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Pseudonymisation: This is the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information. This is particularly the case if the additional information is kept separately and technical and organisational measures have been taken to ensure that the personal data cannot be attributed to an identified or identifiable natural person without disproportionate effort.
Processing: This is any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Controller or controller responsible for the processing: These are the natural or legal persons, public authorities, agencies or other bodies which, alone or jointly with others, determine the purposes and means of the processing of personal data.
Security
Your personal data is transmitted to us in encrypted form. For this purpose, we use the SSL/TLS (Secure Sockets Layer/Transport Layer Security) encryption system.
We use technical and organisational security measures to protect your personal data against misuse, loss, destruction or access by unauthorised persons. Our security measures correspond to the current state of the art and are continuously improved in line with technological development.
Validity and amendment of this privacy policy
This privacy policy is currently valid. Further development of our website or the implementation of new technologies or changes in statutory or regulatory requirements may make it necessary to amend this privacy policy. We therefore reserve the right to make changes at any time.