🌱 Join Germany’s largest tree planting tour in 2026: Secure your spot now!

Contact us

Privacy Policy

PLANT-MY-TREE® Privacy Policy

Welcome to our website. We are delighted that you are interested in our company. Data protection is a top priority for us. This Privacy Policy informs you about the nature, scope, and purpose of the collection and processing of personal data when you visit and use our website, as well as the associated web pages, features, content, and external online presence (e.g., our social media profiles).

The terms used are based on the European General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the Telecommunications and Digital Services Data Protection Act (TDDDG).

§ 1 Information on the collection of personal data

  1. Personal data is any information relating to an identified or identifiable natural person, such as name, address, email address, and user behavior.
  2. The data controller pursuant to Article 4(7) of the EU General Data Protection Regulation (GDPR) is PLANT-MY-TREE®, Managing Director: Sören Brüntgens, Hochstr. 1, 45472 Mülheim, Germany, Tel: +49 (0) 20830664810, Email: info@plant-my-tree.de (see our legal notice).
  3. When you contact us by email or via a contact form, the data you provide (your email address, and optionally your name and telephone number) will be stored by us in order to answer your questions. The legal basis for this is Article 6(1)(b) GDPR and Article 6(1)(f) GDPR (our legitimate interest in processing your request). We delete the data collected in this context once storage is no longer necessary, or restrict its processing if statutory retention obligations apply.
  4. If we use a contracted service provider for individual functions of our services or wish to use your data for commercial purposes, we will inform you in detail about the respective processes below. We will also specify the defined criteria for the storage period and the relevant legal bases according to the GDPR and the German Telemedia Act (TMG).
  5. You can reach our data protection officer as follows: Prof. Dr. Hans-Hermann Dirksen, LIEBENSTEIN CONFIDENTIAL GmbH, Eschersheimer Landstr. 351, 60320 Frankfurt am Main, Germany, Phone: +49 69 2729-5921, Fax: +49 69 2729-5923, Email: mail@liebenstein-confidential.de

§ 2 Your rights

  1. You have the following rights with regard to your personal data:
  2. Pursuant to Article 15 GDPR, you have the right to request confirmation as to whether or not personal data concerning you is being processed, and to access this data, as well as further information and a copy of the data.
  3. Pursuant to Article 16 GDPR, you have the right to request the completion of incomplete personal data concerning you or the rectification of inaccurate personal data concerning you.
  4. Pursuant to Article 17 GDPR, you have the right to request that personal data concerning you be erased without undue delay, or alternatively, pursuant to Article 18 GDPR, to request the restriction of processing of your personal data.
  5. Pursuant to Article 20 GDPR, you have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and to request its transmission to another controller.
  6. Pursuant to Article 7(3) GDPR, you have the right to withdraw your consent at any time with effect for the future.
  7. In accordance with Article 21 of the GDPR, you have the right to object at any time to the processing of your personal data based on legitimate interests pursuant to Article 6(1)(f) of the GDPR, provided there are grounds relating to your particular situation.
  8. In accordance with Article 77 of the GDPR, you have the right to lodge a complaint with the competent supervisory authority.

§ 3 Collection of personal data when visiting our website

  • When you use our website for purely informational purposes, i.e., if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server.
    1. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure its stability and security (legal basis is Art. 6 para. 1 sentence 1 lit. f) GDPR):
  • IP address
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transferred
  • Website from which the request originated
  • Browser
  • Operating system and its interface
  • Language and version of the browser software
  • This data (so-called server log files) is stored for a maximum of 7 days and then deleted. Longer storage only occurs if necessary for the investigation of security incidents (e.g., hacking attacks).

§ 3.1 Use of ElevenLabs (speech and audio processing)

1. Purpose of Data Processing
We use the ElevenLabs service exclusively for the following clearly defined purposes:

  • Providing text-to-speech functionality (reading content aloud).
  • Providing speech-to-text functionality (transcription of audio input).
  • Troubleshooting, performance analysis, and abuse detection (e.g., detection of spam or violent content in audio input).
  • Ensuring technical operation, including system logging.
  • No further use is made of the data.

2. Processed Data

  • Content Input: Text that you enter into designated fields.
  • Audio Data: Audio recordings from your device and generated audio files.
  • Technical Usage Data: IP address, device and browser type, operating system, timestamp, session IDs.
  • Voice Characteristics: Can be temporarily analyzed for technical reasons, but are not used for biometric identification. They are deleted immediately after processing.

3. Legal Basis

  • The processing is based on different legal grounds depending on the purpose:
  • Provision of voice functions: Art. 6 para. 1 lit. b GDPR (contract or pre-contractual measures).
  • Troubleshooting, performance analysis, and abuse detection: Art. 6 para. 1 lit. f GDPR (legitimate interest in a secure and functional service).
  • Voluntary audio input for non-essential additional functions: Art. 6 para. 1 lit. a GDPR (consent).
  • Use of data for training AI models: exclusively with separate, voluntary, and documented consent (Art. 6 para. 1 lit. a GDPR).

4. Recipients / Processors
Processing by: Eleven Labs, Inc., 41 Madison Avenue, New York, NY 10010, USA, as a data processor pursuant to Article 28 GDPR.

A data processing agreement with EU Standard Contractual Clauses (SCCs) is in place.

Eleven Labs uses subprocessors (e.g., Amazon Web Services, Inc.).

The current list is available here: https://elevenlabs.io/subprocessors.

5. Third-Country Transfer

Data transfers to the USA are based on the EU Standard Contractual Clauses (Art. 46 para. 2 lit. c GDPR).

If the recipient is certified under the EU-US Data Privacy Framework (DPF), the transfer is additionally based on this adequacy decision (Art. 45 GDPR).

6. Data Retention Period

We store audio data, transcription content, and system and error logs only as long as necessary for the purposes stated in Section 3.1, and then delete or anonymize them.

Data that you have expressly consented to for the training of AI models will be processed until you withdraw your consent.

Changes to this data retention policy will be announced in advance in this Privacy Policy.

7. Obligation to Provide Data
The use of the voice functions is voluntary.

Without your consent, microphone recording, transcription, and text-to-speech functionality will not be available.

The other website functions will remain available.

8. Right to Object and Withdraw Consent

You may withdraw your consent at any time with effect for the future (Art. 7 para. 3 GDPR).

You may object to processing based on legitimate interest at any time (Art. 21 GDPR).

You can exercise your right to withdraw consent/objection via our cookie/consent management tool or by email to the contact address specified in Section 1.

9. Security

  • Transmission: TLS-encrypted (HTTPS).
  • Storage at the data processor: Encryption at rest.
  • Access only by authorized personnel based on an authorization concept.
  • Pseudonymization where technically feasible.

§ 4 Hosting

  1. We host our website with external service providers (hosting providers). The personal data collected on this website is stored on the hosting providers’ servers. This may include, in particular, IP addresses, metadata and communication data, contact requests, contract data, names, website access data, and other data generated via a website.
  2. The use of hosting providers is for the purpose of fulfilling our contractual obligations to our potential and existing customers (Art. 6 para. 1 lit. b) GDPR) and in the interest of a secure, fast, and efficient provision of our online services by professional providers (Art. 6 para. 1 lit. f) GDPR). If corresponding consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a) GDPR and Section 25 para. 1 TDDDG; this consent can be revoked at any time.
  3. The use of hosting providers is based on the legal grounds of Art. 6 para. 1 lit. a) GDPR and Section 25 para. 1 TDDDG; this consent can be revoked at any time.
  4. Web hosting providers used:
  5. We use the following hosting providers for our website:
  6. Raidboxes GmbH
    Hafenstraße 32
    48153 Münster
    Germany
  7. dogado GmbH
    Antonio-Segni-Straße 11
    44263 Dortmund
    Germany
    Data processing agreement:
  8. To ensure data processing in compliance with data protection regulations, we have concluded a data processing agreement (DPA) with each of our hosting providers in accordance with Article 28 of the GDPR. These agreements ensure that the hosting providers process the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

§ 5 Cookies

  1. In addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive and assigned to the browser you are using. They allow the entity that sets the cookie (in this case, us) to receive certain information. Cookies cannot run programs or transmit viruses to your computer. They serve to make the overall internet experience more user-friendly and effective.
  2. Use of Cookies:
  3. This website uses the following types of cookies, the scope and function of which are explained below:
  4. Transient cookies (see b)
  5. Persistent cookies (see c).
  6. Transient cookies are automatically deleted when you close your browser. These include, in particular, session cookies. These store a so-called session ID, which allows different requests from your browser to be associated with the same session. This allows your computer to be recognized when you return to our website. Session cookies are deleted when you log out or close your browser.
  7. Persistent cookies are automatically deleted after a predetermined period, which can vary depending on the cookie. You can delete cookies at any time in your browser’s security settings.
  8. The legal basis for processing personal data using technically necessary cookies is Section 25 Paragraph 2 No. 2 of the German Telemedia Act (TMG) in conjunction with Article 6 Paragraph 1 Letter f) of the GDPR. The legal basis for processing personal data using cookies for analytical purposes and for ad control and evaluation is Section 25 Paragraph 1 of the TDDG or Article 6 Paragraph 1 Sentence 1 Letter a) of the GDPR.
  9. You can configure your browser settings according to your preferences and, for example, reject the acceptance of third-party cookies or all cookies. Please note that you may not be able to use all the functions of this website if you do so. You can revoke or adjust your consent to the setting of cookies at any time with effect for the future via our cookie management tool (consent banner).

§ 6 Further functions and offers of our website

  1. In addition to simply browsing our website, we offer various services that you can use if you are interested. To use these services, you will generally need to provide further personal data, which we use to provide the respective service and for which the aforementioned data processing principles apply.
  2. The personal data you enter will be collected and stored exclusively for internal use by the data controller and for its own purposes. The data controller may transfer this data to one or more processors, such as an IT service provider or web host, who will also use the personal data exclusively for internal purposes attributable to the data controller.
  3. By registering on the website of the data controller, the IP address assigned by the data subject’s internet service provider (ISP), as well as the date and time of registration, are also stored. This data is stored to prevent misuse of our services and to enable us to investigate criminal offenses if necessary. Therefore, storing this data is necessary to protect the data controller. This data is generally not shared with third parties unless there is a legal obligation to do so or disclosure is necessary for law enforcement purposes. The legal basis for this storage is Article 6(1)(f) GDPR (our legitimate interest in preventing misuse and ensuring system stability).
  4. We sometimes use external service providers to process your data. If, in the course of our processing, we disclose data to other persons and companies (processors or third parties), transmit it to them, or otherwise grant them access to the data, this is done only on the basis of legal permission (e.g., if the transfer of data to third parties, such as payment service providers, is necessary for the performance of a contract pursuant to Art. 6 para. 1 lit. b) GDPR), if you have given your consent, if a legal obligation requires it, or on the basis of our legitimate interests (e.g., when using agents, web hosts, etc.).
  5. If we commission third parties to process data on the basis of a so-called “data processing agreement,” this is done on the basis of Art. 28 GDPR. These third parties are carefully selected and commissioned by us, are bound by our instructions, and are regularly monitored.
  6. Furthermore, we may share your personal data with third parties if participation in promotions, competitions, contract conclusions, or similar services are offered by us jointly with partners. You will receive more detailed information when you provide your personal data or below in the description of the offer.
  7. If we process data outside the European Union (EU) or the European Economic Area (EEA) (so-called third countries), or if this occurs in the context of using third-party services or disclosing or transferring data to third parties, this will only be done if it is necessary for the performance of our (pre-)contractual obligations, based on your consent, due to a legal obligation, or based on our legitimate interests. Otherwise, we will only process or have data processed in a third country if the conditions of Articles 44 et seq. of the GDPR are met (e.g., based on an adequacy decision by the EU Commission such as the EU-U.S. Data Privacy Framework or by agreeing to EU standard contractual clauses).

§ 7 Legal basis for processing

  1. Article 6(1)(a) GDPR serves as the legal basis for our company’s processing operations where we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case, for example, with processing operations necessary for the delivery of goods or the provision of other services or consideration, the processing is based on Article 6(1)(b) GDPR.
  2. The same applies to processing operations that are necessary for carrying out pre-contractual measures, such as in cases of inquiries about our products or services.
  3. If our company is subject to a legal obligation that requires the processing of personal data, such as for the fulfillment of tax obligations, the processing is based on Article 6(1)(c) GDPR.
  4. In some cases, the processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor were injured on our premises and their name, age, health insurance information, or other vital information had to be shared with a doctor, hospital, or other third party. In this case, the processing would be based on Article 6(1)(d) GDPR.
  5. Furthermore, processing operations could be based on Article 6(1)(f) GDPR. This legal basis applies to processing operations not covered by any of the aforementioned legal bases, if the processing is necessary for the purposes of the legitimate interests pursued by our company or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject. We are permitted to carry out such processing operations because they have been specifically mentioned by the European legislator. The legislator took the view that a legitimate interest could be assumed where the data subject is a client of the controller (Recital 47, second sentence, GDPR).

  6. Furthermore, processing operations could be based on Article 6(1)(f) GDPR. If the processing of personal data is based on Art. 6 para. 1 lit. f) GDPR, we will inform you of the respective specific legitimate interest within the framework of the description of the specific processing operation in this privacy policy (e.g. ensuring IT security, preventing misuse or designing our website to meet user needs).

§ 8 Objection or revocation of the processing of your data

  1. If you have given your consent to the processing of your data, you can revoke it at any time with effect for the future. Such a revocation affects the lawfulness of processing your personal data after you have communicated it to us. If consent was given via our cookie management tool (consent banner), you can most easily revoke it for these purposes at any time directly via the tool’s settings on our website.
  2. If we base the processing of your personal data on a balancing of interests, you can object to the processing. This is the case, in particular, if the processing is not necessary for the performance of a contract with you, which we will explain in the following description of the functions. When exercising such an objection, please state the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will review the situation and either cease or adjust the data processing or demonstrate to you our compelling legitimate grounds for continuing the processing.
  3. Of course, you can object to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us of your objection to advertising using the following contact details: PLANT-MY-TREE®, Managing Director:
    Sören Brüntgens, Hochstraße 1, 45472 Mülheim, Tel: +49 (0) 20830664810, E-Mail: info@plant-my-tree.de.

§ 9 Use of Blog Functions

You can leave public comments on our blog, where we publish various articles on topics related to our work. Your comment will be published with your chosen username. We recommend using a pseudonym instead of your real name. A username and email address are required; all other information is optional.

§ 10 Use of our portal

  1. To use our portal, you must register by providing your email address, a password of your choice, and a username of your choice. You are not required to use your real name; pseudonymous use is permitted. We use the double opt-in procedure for registration, meaning your registration is only complete once you have confirmed it by clicking the link in the confirmation email sent to you for this purpose. If you do not confirm your registration within 24 hours, it will be automatically deleted from our database. Providing the aforementioned data is mandatory; you may voluntarily provide any further information through your use of our portal.
  2. When you use our portal, we store the data necessary for fulfilling the contract, including payment information, until you permanently delete your account. We also store any voluntary data you provide for the duration of your portal use, unless you delete it beforehand. You can manage and change all your information in the secure customer area. The legal basis is Article 6(1)(f) GDPR.
  3. When you use the portal, your data may be made accessible to other portal users in accordance with the terms of the agreement. Unregistered members will not receive any information about you. Your username and photo are visible to all registered members, regardless of whether you have made them public. In contrast, your entire profile, including the data you have made public, is visible to all members you have confirmed as personal contacts. If you share content with your personal contacts that you do not send via private message, this content will be visible to third parties if your personal contact has granted permission. Posts you make in public groups are visible to all registered portal members.
  4. To prevent unauthorized access to your personal data, especially financial data, the connection is encrypted using TLS technology.

§ 11 Newsletter

  1. With your consent, you can subscribe to our newsletter, which will keep you informed about our current special offers. The advertised goods and services are specified in the consent form.
  2. We use the double opt-in procedure for newsletter registration. This means that after you register, we will send an email to the address you provided, asking you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. We also store your IP address and the date and time of registration and confirmation. The purpose of this procedure is to verify your registration and, if necessary, to investigate any potential misuse of your personal data.
  3. The only mandatory information required to send you the newsletter is your email address. Providing any other, separately marked data is voluntary and is used to personalize our communications with you. After your confirmation, we will store your email address for the purpose of sending you the newsletter. The legal basis is Article 6(1)(a) GDPR.
  4. You can withdraw your consent to receive the newsletter and unsubscribe at any time. You can do this by clicking the link provided in every newsletter email or by contacting us using the contact details provided in the legal notice.

§ 11.1 Newsletter – Mailing service provider Brevo

  1. Our newsletters are sent via the service provider “Brevo,” a newsletter distribution platform operated by Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany. You can view the service provider’s privacy policy here: https://www.brevo.com/de/legal/privacypolicy/. The service provider is used based on our legitimate interests pursuant to Art. 6 para. 1 lit. f) GDPR and a data processing agreement pursuant to Art. 28 para. 3 sentence 1 GDPR.
  2. The service provider may use recipient data in pseudonymized form, i.e., without linking it to a specific user, to optimize or improve its own services, e.g., for the technical optimization of newsletter delivery and display, or for statistical purposes. However, the service provider does not use the data of our newsletter recipients to contact them directly or to share the data with third parties. If our newsletters contain so-called tracking pixels (web beacons), we analyze your user behavior (e.g., open and click rates) provided you have given us your consent in accordance with Art. 6 para. 1 lit. a) GDPR in conjunction with Section 25 para. 1 TDDDG. You can prevent this tracking at any time by unsubscribing from the newsletter or by disabling the display of images by default in your email program.

§ 12 Tracking Tools

  1. The tracking measures listed below and used by us are carried out on the basis of Section 25 Paragraph 1 of the German Telemedia Act (TDDG) and Article 6 Paragraph 1 Sentence 1 Letter a) of the GDPR. We use these tracking measures to ensure the needs-based design and continuous optimization of our website. We also use them to statistically record the use of our website and to evaluate it for the purpose of optimizing our services for you. This processing only takes place after you have given your explicit consent in accordance with the aforementioned regulations.
  2. The respective data processing purposes and data categories can be found in the descriptions of the corresponding tracking tools.

§ 12.1 Use of Google Analytics

  1. Google Analytics: For the purpose of tailoring our website to user needs and continuously optimizing it, we use Google Analytics, a web analytics service provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; hereinafter “Google”). In this context, pseudonymized user profiles are created and cookies are used. The information generated by the cookie about your use of this website, such as browser type/version, operating system used, referrer URL (the previously visited page), hostname of the accessing computer (IP address), and time of the server request, is transmitted to a Google server in the USA and stored there. Google is certified under the EU-U.S. Data Privacy Framework, which is why the data transfer to the USA is legally based on an adequacy decision by the EU Commission.
  2. The information is used to evaluate website usage, to compile reports on website activity, and to provide other services related to website activity and internet usage for the purposes of market research and the needs-based design of this website. This information may also be transferred to third parties if required by law or if third parties process this data on our behalf.
  3. Under no circumstances will your IP address be combined with other Google data. Since we use the current version of Google Analytics 4 (GA4), IP addresses are anonymized by default, making it impossible to identify you (IP masking).
  4. You can prevent the installation of cookies by adjusting your browser settings; however, please note that in this case, you may not be able to fully utilize all the functions of this website. Furthermore, you can prevent Google from collecting and processing data generated by the cookie and related to your use of the website (including your IP address) by withdrawing your consent at any time in our cookie management tool or by downloading and installing a browser add-on (https://tools.google.com/dlpage/gaoptout?hl=de). As an alternative to the browser add-on, or when using browsers on mobile devices, please revoke your consent in our cookie management tool to prevent Google Analytics from collecting data on this website in the future (setting a manual opt-out cookie is no longer necessary when using our consent management platform). Further information on data protection in connection with Google Analytics can be found, for example, in the Google Analytics Help Center (https://support.google.com/analytics/answer/6004245?hl=de).
  5. Third-party provider information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of Service: http://www.google.com/analytics/terms/de.html, Privacy Overview: http://www.google.com/intl/de/analytics/learn/privacy.html, and the Privacy Policy: http://www.google.de/intl/de/policies/privacy.
  6. The legal basis for the processing of personal data using Google Analytics is your consent pursuant to Section 25 Paragraph 1 TDDDG or Article 6 Paragraph 1 Sentence 1 lit. a) GDPR.

§ 12.2 Use of the Microsoft Clarity analysis tool

  1. We use the web analytics service “Microsoft Clarity” from Microsoft Corporation (One Microsoft Way, Redmond, WA 98052-6399, USA; hereinafter referred to as “Microsoft”) on our website.
  2. Microsoft Clarity provides us with analyses of website usage (e.g., session recordings, heatmaps, clicks, and scrolling behavior). This helps us analyze and continuously improve the user-friendliness of our site. Data processing is pseudonymized. We have activated the “Strict Masking” function, which automatically anonymizes all text input and sensitive user data in the recordings. Therefore, we cannot directly identify you.
  3. The legal basis for using Microsoft Clarity is your explicit consent pursuant to Art. 6 para. 1 sentence 1 lit. a) GDPR. Data collection only begins after you have given us this consent via our cookie banner. You can withdraw your consent at any time with effect for the future via our cookie settings.
  4. We have entered into a joint controllership agreement with Microsoft pursuant to Article 26 of the GDPR. Microsoft uses the collected data, among other things, to improve its own services.
  5. The collected information may be transferred to Microsoft servers in the USA. Microsoft Corporation is certified under the EU-U.S. Data Privacy Framework (DPF). This constitutes an adequacy decision by the European Commission, which ensures secure data transfer and an adequate level of data protection.
  6. The cookies set by Microsoft Clarity have a lifespan of up to 13 months. Detailed session records are automatically deleted after 30 days. Aggregated analytics data and heatmaps are stored for a maximum of 13 months.
  7. Further information on data protection at Microsoft can be found in Microsoft’s privacy statement at: https://privacy.microsoft.com/de-de/privacystatement.

§ 13 Video Integration

  1. To enhance the visual appeal of our online content, we embed videos from external platforms. To protect your privacy, this content is blocked by default. Data is only transferred to the providers when you grant your consent via our consent management tool (Cookiebot) or by actively clicking on the video.
  2. The legal basis for embedding these videos and the associated data processing is your explicit consent pursuant to Section 25 Paragraph 1 of the German Telemedia Act (TDDG) (regarding the storage or reading of cookies/information on your device) in conjunction with Article 6 Paragraph 1 Sentence 1 Letter a) of the GDPR.

§ 13.1 Integration of YouTube videos

  1. We have embedded YouTube videos in our online content. These videos are stored on http://www.YouTube.com and can be played directly from our website. All videos are embedded in “enhanced privacy mode,” meaning that no data about you as a user is transmitted to YouTube unless you play the videos. Only when you give us your explicit consent via our cookie management tool and play the videos will the data mentioned in paragraph 2 be transmitted. We have no control over this data transmission.
  2. By giving your consent and accessing the videos, YouTube receives the information that you have accessed the corresponding subpage of our website. In addition, the data mentioned in Section 3 of this declaration will be transmitted. This occurs regardless of whether YouTube provides a user account that you are logged into, or whether no user account exists. If you are logged into Google, your data will be directly associated with your account. If you do not want this association with your YouTube profile, you must log out before activating the button. YouTube stores your data as user profiles and uses it for advertising, market research, and/or to tailor its website to your needs. This analysis is carried out in particular (even for users who are not logged in) to provide targeted advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and to exercise this right, you must contact YouTube.
  3. Further information on the purpose and scope of data collection and processing by YouTube can be found in the privacy policy of the European provider (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). There you will also find further information on your rights and settings options to protect your privacy: https://www.google.de/intl/de/policies/privacy. Since data may be transferred to Google LLC in the USA, we would like to point out that Google is certified under the EU-U.S. Data Privacy Framework and the transfer is therefore based on an adequacy decision by the EU Commission.
  4. The legal basis for the integration and the associated data processing is your explicit consent pursuant to Section 25 Paragraph 1 of the German Telemedia Act (TDDG) (storage and/or retrieval of information on your device) in conjunction with Article 6 Paragraph 1 Sentence 1 Letter a) of the GDPR. You can revoke this consent at any time with effect for the future via our cookie settings.

§ 13.2 Integration of Vimeo videos

  1. Our website uses plugins from the video portal Vimeo. The provider is Vimeo Inc., 555 West 18th Street, New York, NY 10011, USA.
  2. When you visit one of our pages equipped with a Vimeo plugin, a connection to Vimeo’s servers is established. This informs the Vimeo server which of our pages you have visited. Vimeo also receives your IP address. This applies even if you are not logged into Vimeo or do not have a Vimeo account. The information collected by Vimeo is transmitted to the Vimeo server in the USA.
  3. If you are logged into your Vimeo account, you allow Vimeo to directly associate your browsing behavior with your personal profile. You can prevent this by logging out of your Vimeo account.
  4. Further information on the handling of user data can be found in Vimeo’s privacy policy at: https://vimeo.com/privacy. There you will also find further information about your rights and settings options to protect your privacy.

§ 13.3 Wistia

We also embed videos from the Wistia service, operated by Wistia, Inc., 120 Brookline Street, Cambridge, MA 02139, USA. Wistia helps us analyze user behavior regarding our videos (e.g., how long a video was watched). When you access a Wistia video, a connection is established to Wistia’s servers in the USA, and your IP address and technical information about your device are transmitted. Wistia is certified under the EU-U.S. Data Privacy Framework, which is why the data transfer to the USA is based on an adequacy decision by the European Commission. Further information on data protection at Wistia can be found at: https://wistia.com/privacy.

§ 14 Use of Google Ads Conversion

  1. We use Google Ads to advertise our attractive offers on external websites using advertising materials (so-called Google Ads). We can then analyze the data from these advertising campaigns to determine the success of individual advertising measures. Our aim is to show you advertising that is relevant to you, to make our website more interesting for you, and to ensure fair billing for advertising costs.
  2. These advertisements are delivered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”) via so-called “ad servers.” We use ad server cookies to measure certain parameters for success, such as ad impressions or user clicks. If you access our website via a Google ad, Google Ads will store a cookie on your computer. These cookies typically expire after 30 days and are not intended to personally identify you. This cookie typically stores the following analysis values: the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions), and opt-out information (indicating that the user no longer wishes to be targeted).
  3. These cookies allow Google to recognize your internet browser. If a user visits certain pages of an ad customer’s website and the cookie stored on their computer has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to that page. Each ad customer is assigned a different cookie. Therefore, cookies cannot be tracked across the websites of different ad customers. We ourselves do not collect or process any personal data in the aforementioned advertising measures. We only receive statistical analyses from Google. These analyses allow us to identify which of the advertising measures used are particularly effective. We do not receive any further data from the use of these advertising tools, and in particular, we cannot identify users based on this information.
  4. Due to the marketing tools used, your browser automatically establishes a direct connection to Google’s server. We have no control over the scope and further use of the data collected by Google through the use of this tool and therefore inform you to the best of our knowledge: By integrating Ads Conversion, Google receives the information that you have accessed the corresponding part of our website or clicked on one of our ads. If you are registered with a Google service, Google can associate your visit with your account. Even if you are not registered with Google or are not logged in, it is possible that the provider will learn and store your IP address. Since data may be transferred to Google LLC in the USA, we would like to point out that Google is certified under the EU-U.S. Data Privacy Framework and that the transfer is therefore based on an adequacy decision by the EU Commission.
  5. You can prevent participation in this tracking process in several ways: The easiest way is to revoke your previously granted consent via our cookie management tool (consent banner). Alternatively, you can prevent tracking: a) by adjusting your browser settings accordingly; in particular, blocking third-party cookies will prevent you from receiving ads from third-party providers; b) by disabling conversion tracking cookies by configuring your browser to block cookies from the domain “www.googleadservices.com” (https://www.google.de/settings/ads), although this setting will be deleted if you clear your cookies; c) by disabling interest-based ads from providers participating in the “About Ads” self-regulatory campaign via the link http://www.aboutads.info/choices, although this setting will also be deleted if you clear your cookies. d) By permanently deactivating this feature in your Firefox, Internet Explorer, or Google Chrome browser via the link http://www.google.com/settings/ads/plugin. Please note that in this case, you may not be able to fully utilize all the features of this service.
  6. The legal basis for processing your data and storing/reading information on your device is your explicit consent pursuant to Section 25 Paragraph 1 of the German Telemedia Act (TMG) in conjunction with Article 6 Paragraph 1 Sentence 1 Letter a) of the GDPR. Further information on data protection at Google can be found here: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html. Alternatively, you can visit the Network Advertising Initiative (NAI) website at http://www.networkadvertising.org.

§ 14.1 Google Call-Conversion-Tracking

  1. We utilize the Google Call Conversion Tracking feature on our website. If you access our website via a Google advertisement, the telephone number displayed on the site is replaced by a dynamic forwarding number provided by Google. This enables us to track whether—and for how long—phone calls initiated via our website were placed as a result of an advertisement. In this process, Google processes data regarding the time and duration of the call, as well as the caller’s telephone number (in an abbreviated format), in order to generate statistical analyses regarding the success of our advertisements. However, the content of the conversations is not recorded. We do not identify you personally in connection with this process. This processing is carried out on the basis of your consent pursuant to Art. 6 Para. 1 lit. a of the GDPR.
  2. In the context of using Google Ads, personal data may also be transferred to Google LLC in the USA. Google LLC is certified under the EU-U.S. Data Privacy Framework. Further information regarding data processing by Google can be found in Google’s Privacy Policy.

§ 15 Webshop

  1. We use the shop system of Shopify International Limited, Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, Ireland (“Shopify”) to provide our online shop. The data described below is processed on Shopify’s servers. We have concluded a data processing agreement with Shopify in accordance with Article 28 of the GDPR. Since data may be transferred to Shopify Inc. in Canada and the USA, we would like to point out that Canada has an adequacy decision and Shopify is certified under the EU-U.S. Data Privacy Framework for the USA.
  2. If you wish to place an order in our online shop, you must provide your personal data, which we require to process your order. Mandatory information required for processing the contract is marked accordingly; all other information is voluntary. We process the data you provide to process your order. For this purpose, we may transfer your payment details to our bank. The legal basis for this is Article 6(1)(b) of the GDPR.

  3. If you wish to place an order in our online shop, you must provide your personal data, which we require to process your order. You can voluntarily create a customer account, which allows us to save your data for future purchases. When you create an account under “My Account,” the data you provide will be stored until you revoke your consent. All other data, including your user behavior, can be managed by you in the customer area.
  4. We may also process the data you provide to inform you about other interesting products in our portfolio or to send you emails with technical information.
  5. Due to commercial and tax regulations, we are obligated to store your address, payment, and order data for ten years. However, after two years, we restrict processing, meaning your data will only be used to comply with legal obligations.
  6. To prevent unauthorized access to your personal data, especially financial data, the ordering process is encrypted using TLS technology.

§ 15.1 Payment providers

Within the framework of contractual and other legal relationships, due to legal obligations, or otherwise based on our legitimate interests, we offer data subjects efficient and secure payment options and, in addition to banks and credit institutions, use other payment service providers for this purpose (collectively, “Payment Service Providers”). The data processed by the Payment Service Providers includes master data, such as name and address, bank details, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as contract, amount, and recipient-related information. This information is necessary to process the transactions. However, the entered data is processed and stored only by the Payment Service Providers. This means that we do not receive any account or credit card information, but only confirmation or rejection of the payment. The Payment Service Providers may transmit the data to credit reference agencies. This transmission is for the purpose of identity and creditworthiness verification. For further information, please refer to the terms and conditions and privacy policies of the Payment Service Providers. The terms and conditions and privacy policies of the respective payment service providers apply to payment transactions and can be accessed on their respective websites or transaction applications. We also refer you to these for further information and to exercise your rights of withdrawal, access, and other data subject rights.

PayPal

On our website, we offer payment via PayPal, among other options. The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal”).

If you select payment via PayPal, the payment details you enter will be transmitted to PayPal.

The transmission of your data to PayPal is based on Article 6(1)(a) GDPR (consent) and Article 6(1)(b) GDPR (processing necessary for the performance of a contract). You have the right to withdraw your consent to data processing at any time. Such withdrawal will not affect the lawfulness of processing based on consent before its withdrawal.

Stripe
We offer the option of processing payments via the payment service provider Stripe Inc., 510 Townsend St., San Francisco, CA 94103 (hereinafter referred to as “Stripe”). Stripe is certified under the EU-U.S. Data Privacy Framework, which is why the data transfer to the USA is lawful and based on an adequacy decision by the EU Commission. This corresponds to our legitimate interest in offering an efficient and secure payment method, Art. 6 para. 1 sentence 1 lit. f) GDPR. In this context, we transfer the following data to Stripe, insofar as it is necessary for the performance of the contract, Art. 6 para. 1 sentence 1 lit. b) GDPR: cardholder name, email address, customer number, order number, bank details, credit card details, credit card expiry date, credit card security code (CVC), date and time of the transaction, transaction amount, name of the merchant, and location. Stripe assumes a dual role as both controller and processor in data processing activities. As controller, Stripe uses Your data is processed to fulfill regulatory obligations. This is in accordance with Stripe’s legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f) GDPR and serves the purpose of contract fulfillment pursuant to Art. 6 para. 1 sentence 1 lit. b) GDPR. We have no influence over this process. Further information on your rights to object to and have your data erased by Stripe can be found at: https://stripe.com/privacy-center/legal

Credit card

When paying by credit card (Visa/MasterCard and American Express), your entered payment data will be collected and stored by SIX Payment Services AG and BS PAYONE GmbH in accordance with Art. 6 Para. 1 Sentence 1 lit. b) GDPR and only passed on to the companies involved in the payment process.

By paying by credit card, you accept the terms and conditions of the payment provider. We do not collect or store your payment data in this case. Further information can be found in your credit card company’s privacy policy.

Payment in installments

On our website, we offer, among other things, installment payments. We use the service provided by Klarna. The provider is Klarna AB, Sveavägen 46, 111 34 Stockholm, Sweden (hereinafter “Klarna”).

Klarna offers various payment options (e.g., installment payments). If you choose to pay with Klarna (Klarna Checkout solution), Klarna will collect various personal data from you. You can find details about this in Klarna’s privacy policy at the following link: https://www.klarna.com/de/datenschutz/. Klarna uses cookies to optimize the use of the Klarna Checkout solution. Insofar as cookies or similar storage technologies are used on your device, this is done exclusively on the basis of your prior express consent in accordance with Section 25 Paragraph 1 of the German Telemedia Act (TMG) in conjunction with Article 6 Paragraph 1 Letter a) of the GDPR, which you can manage via our consent banner. Cookies are small text files that are stored on your device and do not cause any damage. They remain on your device until you delete them. Details on the use of Klarna cookies can be found at the following link: https://cdn.klarna.com/1.0/shared/content/policy/cookie/de_de/checkout.pdf. Your data is transferred to Klarna on the basis of Article 6 Paragraph 1 Sentence 1 Letter a) GDPR (consent) and Article 6 Paragraph 1 Sentence 1 Letter b) GDPR (processing necessary for the performance of a contract). You have the right to withdraw your consent to data processing at any time. Such withdrawal does not affect the lawfulness of processing based on consent before its withdrawal.

Other payment methods (Apple Pay, Google Pay, Shop Pay)
In our online shop, we also offer the expedited payment methods Apple Pay (Apple Inc.), Google Pay (Google Ireland Limited), and Shop Pay (Shopify International Limited). If you choose one of these payment methods, the data required for payment processing (such as the purchase price and transaction details) will be transmitted to the respective provider. The legal basis for this data processing is Article 6(1)(b) GDPR (contractual necessity). If data is transferred to the USA (e.g., to Apple or Google), we would like to point out that the respective providers are certified under the EU-U.S. Data Privacy Framework.

§ 15.2 Registration, login and customer account

  1. Customers can create a customer account. During registration, customers are informed of the required mandatory information, which is processed for the purpose of providing the customer account based on the fulfillment of contractual obligations. The processed data includes, in particular, login information (name, password, and email address). The data entered during registration is used for the purposes of using the customer account and its intended purpose.
  2. Customers may be informed by email about events relevant to their customer account, such as technical changes. If customers delete their customer account, their data relating to the customer account will be deleted, subject to any statutory retention obligations.
  3. When using our registration and login functions, as well as the customer account, we store the IP address and the time of each user action. This storage is based on our legitimate interests, as well as those of the users, in protection against misuse and other unauthorized use. This data is generally not shared with third parties unless it is necessary for pursuing our claims or there is a legal obligation to do so.

§ 15.3 Deletion of data

  1. The data we process will be erased or its processing restricted in accordance with Articles 17 and 18 of the GDPR. Unless expressly stated otherwise in this privacy policy, the data stored by us will be erased as soon as it is no longer required for its intended purpose and there are no legal obligations to retain it. If the data is not erased because it is required for other legally permissible purposes, its processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons.
  2. In Germany, data is retained for 6 years in accordance with Section 257 Paragraph 1 of the German Commercial Code (HGB) (commercial books, inventories, opening balance sheets, annual financial statements, commercial correspondence, accounting documents, etc.) and for 10 years in accordance with Section 147 Paragraph 1 of the German Fiscal Code (AO) (books, records, management reports, accounting documents, commercial and business correspondence, documents relevant for taxation, etc.).

§ 16 Social Media Tracking & Pixel

To optimize our advertising campaigns on social networks, measure the success of our ads (conversion tracking), and display interest-based advertising to you (retargeting), we use so-called pixel technologies on our website.

The use of these tracking technologies, including the storage and retrieval of information on your device, is based solely on your prior explicit consent in accordance with Section 25 Paragraph 1 of the German Telemedia Act (TMG) in conjunction with Article 6 Paragraph 1 Sentence 1 Letter a) of the GDPR. You can easily withdraw your consent at any time with effect for the future via our cookie management tool (consent banner).

§ 16.1 Meta (Facebook) Pixel

We use the “Meta Pixel” of the Facebook and Instagram networks, operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Meta”). This pixel allows Meta to identify visitors to our website as a target audience for displaying advertisements. Insofar as data for ad delivery and performance measurement is collected and transmitted to Meta, we and Meta are joint controllers within the meaning of Article 26 GDPR. You can view the corresponding joint controllership agreement on Meta’s website. Since data may be transferred to the American parent company, Meta Platforms Inc., in the USA, we would like to point out that Meta is certified under the EU-U.S. Data Privacy Framework. The data transfer is therefore based on an adequacy decision by the EU Commission. Further information on data protection at Meta can be found at: https://www.facebook.com/about/privacy.

§ 16.2 LinkedIn Insight Tag

In addition, we use the “LinkedIn Insight Tag” from LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”). This tool allows us to evaluate our B2B campaigns on LinkedIn and collect demographic information (e.g., industry, career level) about website visitors who reached us via our LinkedIn ads. LinkedIn collects data such as URL, referrer URL, IP address, and device and browser characteristics. IP addresses are immediately shortened or pseudonymized by LinkedIn. Data may also be transferred to the American LinkedIn Corporation in the USA. LinkedIn is also certified under the EU-U.S. Data Privacy Framework, therefore a lawful transfer to a third country takes place. Further information on data protection at LinkedIn can be found at: https://www.linkedin.com/legal/privacy-policy.

§ 17 Customer Communication & Service

To offer you fast and efficient customer service and to process your requests in the best possible way, we use communication and CRM tools on our website.

§ 17.1 Intercom (Live Chat & Customer Support)

  1. We use the Intercom service, provided by Intercom R&D Facility (Ireland) Limited, 2nd Floor, Stephen Court, 18-21 St. Stephen’s Green, Dublin 2, Ireland (“Intercom”), to communicate with you, particularly for our live chat and customer relationship management (CRM).
  2. When you contact us via the chat widget on our website, the data you enter (e.g., name, email address, message content) as well as technical data (such as IP address, browser type, and pages visited on our website) are transmitted to and stored on Intercom’s servers. This data processing serves the purpose of processing and responding to your inquiry. The legal basis for this is Article 6(1)(b) GDPR (if your inquiry relates to an existing or pending contract) or Article 6(1)(f) GDPR (our legitimate interest in efficient and timely customer support).
  3. If Intercom uses cookies or similar technologies to maintain your chat session or to recognize you on a subsequent visit, this will only occur with your prior explicit consent (Art. 6 para. 1 sentence 1 lit. a) GDPR in conjunction with Section 25 para. 1 TDDDG), which you can manage via our consent banner.
  4. Since Intercom may transfer data to servers in the USA, we would like to point out that Intercom is certified under the EU-U.S. Data Privacy Framework. The data transfer to the USA is therefore lawful and based on an adequacy decision by the EU Commission. Further information on data protection at Intercom can be found at: https://www.intercom.com/legal/privacy.

§ 18 IT Security & Tools

  1. To ensure the security, stability, and continuous availability of our website, as well as to protect our forms from spam and our servers from cyberattacks, we use the tools described below.
  2. The processing of data (such as IP addresses or technical device information) is based on our legitimate interest in the integrity, security, and functionality of our online services, in accordance with Article 6(1)(f) of the GDPR. Insofar as information is stored on or read from your device, this is technically essential for providing our website and is carried out on the basis of Section 25(2) of the German Telemedia Act (TMG) (exemption from the requirement for consent).

§ 18.1 Wordfence Security

  1. To secure our website (especially against hacking, malicious bots, and brute-force attacks), we use the Wordfence security plugin, a service provided by Defiant, Inc., 800 5th Ave Ste 4100, Seattle, WA 98104, USA. Wordfence compares the IP addresses of our website visitors in real time against a list of known attackers to block malicious traffic.
  2. Since this involves transferring data to the USA, we would like to inform you that Defiant Inc. is certified under the EU-U.S. Data Privacy Framework. The data transfer is therefore based on an adequacy decision by the European Commission. Further information on data protection at Wordfence can be found at: https://www.wordfence.com/privacy-policy/.

§ 18.2 Google Tag Manager

We use Google Tag Manager (provider: Google Ireland Limited). This tool allows us to centrally manage other web tags (e.g., Google Analytics or Facebook Pixel) via a single interface. Tag Manager itself does not collect any personal data and does not use cookies; it merely triggers other components that may collect data. Further information: https://www.google.com/intl/de/tagmanager/use-policy.html

§ 18.3 Cookiebot

To manage your consent, we use the cookie management tool “Cookiebot” from Usercentrics A/S, Havnegade 39, 1058 Copenhagen, Denmark. This tool stores your consent settings in a cookie on your device so that they can be recognized on subsequent visits. This processing is carried out to fulfill our legal obligation to provide evidence in accordance with Art. 6 para. 1 lit. c) GDPR.

§ 18.4 Sentry (Fehlerprotokollierung)

To monitor the technical stability of our services and quickly resolve system errors, we use the Sentry service provided by Functional Software, Inc., 450 Townsend Street, San Francisco, CA 94107, USA. When an error or code crash occurs on our website, our system sends an error report to Sentry. This report contains technical data (e.g., information about the operating system, browser, IP address, and time of the error) that helps us locate the problem. This data is not used for profiling and is promptly deleted after evaluation. Sentry is also certified under the EU-U.S. Data Privacy Framework, which ensures that data transfers to the USA are legally compliant. Further information can be found at: https://sentry.io/privacy/.

§ 18.5 Google reCAPTCHA

To protect our forms (e.g., contact form, login) from spam and automated abuse by bots, we use Google reCAPTCHA. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. reCAPTCHA analyzes the behavior of website visitors in the background (e.g., mouse movements, time spent on the page, IP address) to determine whether the input is made by a human or an automated program. If this analysis involves data transfer to Google LLC in the USA, this is legally secured by Google’s certification under the EU-U.S. Data Privacy Framework. Further information on data protection at Google can be found at: https://policies.google.com/privacy.

§ 19 External Content & Presentation

To ensure the appealing design and functionality of our website, we use the following services:

§ 19.1 Fonts (Adobe Fonts & Google Fonts)

  1. To ensure a consistent and visually appealing presentation of our website, we use selected fonts, including Google Fonts and the licensed font “Proxima Nova.”
  2. To best protect your privacy, we have fully integrated these fonts locally on our own servers. When you visit our website, the fonts are loaded directly from our server. No connection is established to servers of external providers (such as Google or Adobe).
  3. Consequently, the display of these fonts does not involve the transmission of your IP address or any other personal data to third parties.

§ 19.2 Leaflet (Maps)

We use the open-source JavaScript library “Leaflet” to display interactive maps. The map data is generally obtained from OpenStreetMap (OpenStreetMap Foundation, UK). To best protect your privacy, the map is deactivated by default when you visit our website. Only when you give us your consent via our consent management tool (Cookiebot) or by clicking directly on the placeholder will a connection to the OpenStreetMap servers be established and your IP address transmitted. The legal basis for the integration and data processing is your explicit consent in accordance with Section 25 Paragraph 1 of the German Telemedia Act (TDDG) in conjunction with Article 6 Paragraph 1 Sentence 1 Letter a) of the GDPR. You can withdraw your consent at any time in the cookie settings.

§ 19.3 Trust Index (Ratings)

We integrate customer reviews on our website via the Trustindex service (Trustindex.io, 1082 Budapest, Üllői út 70, Hungary). To protect your data, this content is blocked by default. Only after you have given your explicit consent via our consent management tool (Cookiebot) will a connection to Trustindex’s servers be established to display the reviews. In doing so, your IP address will be transmitted to Trustindex. The legal basis for this processing is your explicit consent pursuant to Section 25 Paragraph 1 of the German Telemedia Act (TMG) in conjunction with Article 6 Paragraph 1 Sentence 1 Letter a) of the GDPR. You can withdraw your consent at any time via our cookie settings.

§ 20 Contact (contact form, email, telephone)

  1. When you contact us (e.g., via our contact form, email, or telephone), the personal data you provide (such as your name, email address, telephone number, and your specific request) will be stored and processed by us to handle your inquiry and for any follow-up questions.
  2. Purpose and legal basis:
  3. This data is processed on the basis of Article 6(1)(b) GDPR if your inquiry relates to the performance of a contract or is necessary for taking steps prior to entering into a contract. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries addressed to us (Article 6(1)(f) GDPR) or on your consent (Article 6(1)(a) GDPR), if such consent has been obtained.
  4. Storage period:
    The data you transmit to us will remain with us until you request its deletion, withdraw your consent to its storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions – in particular statutory retention periods (e.g. commercial and tax law requirements) – remain unaffected.

§ 21 Data security

  1. During your visit to our website, we use the widely used TLS protocol (Transport Layer Security, often still referred to as SSL) in conjunction with the highest level of encryption supported by your browser. This is typically 256-bit encryption. If your browser does not support this, we will use the highest possible and most secure encryption technology available. You can recognize whether a particular page of our website is transmitted in encrypted form by the closed padlock icon in your browser’s address bar.
  2. Furthermore, we employ appropriate technical and organizational security measures in accordance with Article 32 of the GDPR to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

§ 22 Currentness and amendment of this privacy policy

  1. This privacy policy is currently valid and was last updated in April 2026.
  2. Due to the ongoing development of our website and related services, or due to changes in legal or regulatory requirements, it may become necessary to amend this privacy policy. The current privacy policy can be accessed and printed at any time on our website at https://plant-my-tree.de/.

Jetzt in unter einer Stunde Klimaschutzpartner werden. Wir beraten Sie gerne und helfen Ihnen bei allen nötigen Schritten:

Vom 24. bis 31. Dezember 2024 besteht teils eine eingeschränkte Erreichbarkeit. Bitte senden Sie uns ihr Anliegen am besten per E-Mail an info@plant-my-tree.de. 

Vielen Dank für dein Verständnis und viele Grüße
Dein Team von PLANT-MY-TREE®

Liebe Kunden, liebe Partner,
aufgrund einer technischen Umstellung in unserem Shop kann es aktuell in Einzelfällen zu Problemen in der technischen Abwicklung kommen. Falls etwas nicht wie gewohnt funktioniert, gib uns bitte Bescheid. Wir helfen Dir gerne individuell weiter: info@plant-my-tree.de.

Vielen Dank für Ihr Verständnis und viele Grüße
Ihr Team von PLANT-MY-TREE®