Data protection at a glance
1. General Information
The following information provides a simple overview of what happens to your personal data when you visit our website matter-bridge or special services from our company.
Personal data is all data with which you can be personally identified. Detailed information on the subject of data protection can be found in our data protection guidelines listed under this text.
Who is responsible for data processing?
The data processing is carried out by the responsible body. You can find their contact details in point 2 of the data protection guidelines.
How do we collect your data?
On the one hand, we process your data when you communicate it to us. This can, for example, be data that you enter in a contact form or as part of specific registrations, e.g. for a newsletter, for participation in our forum, participation in our specialist partner program, for setting up a shop account or MEDIOLA user account, to use our software and related apps, or in the context of requests for support services or product inquiries, applications for employment, or as part of a business relationship or collaboration with our company. Furthermore, we process your data – if necessary for the provision of our services – which we receive, for example, from cooperation partners as part of the specialist partner program, or which we obtain from publicly accessible sources (e.g. commercial register, press, Internet) or from other companies in the group or are transmitted by other third parties (e.g. a credit reporting agency). Other data is automatically recorded by our IT systems when you visit our website. This is primarily technical data (e.g. internet browser, operating system or time of the page view). This data is collected automatically as soon as you visit our website.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction, blocking or deletion of this data. In addition, you have the right to restriction of processing, data portability and the right to object to processing. You can contact us at any time at the address given under point 2 of the data protection guidelines if you have any further questions on the subject of data protection. You also have the right to lodge a complaint with the competent supervisory authority.
Do you have an obligation to provide data?
As part of our business relationship, you must provide the personal data that is required for the establishment, implementation and termination of a business relationship and for the fulfillment of the associated contractual or pre-contractual obligations or that we are legally obliged to collect. Without this data, we will generally not be able to enter into, perform and terminate a contract with you.
Analysis tools and third-party tools
When you visit our website, your surfing behavior can be statistically evaluated. This is mainly done with cookies and so-called analysis programs. You can usually prevent this by deactivating cookies or by not using certain tools. You can find detailed information on this in the following data protection guidelines.
General information and mandatory information
We are very pleased that you are interested in our company, in particular our website matter-bridge. Data protection is of a particularly high priority for the management of the mediola – connected living AG. The matter-bridge website of mediola – connected living AG can be used without any indication of personal data. However, if a data subject wants to use special enterprise services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the person concerned.
The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to mediola – connected living AG. By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed of the rights to which they are entitled by means of this data protection declaration. As the controller responsible for processing.
mediola – connected living AG has implemented numerous technical and organizational measures to ensure the most complete protection possible for the personal data processed via this website.
Nevertheless, Internet-based data transmissions can generally have security gaps, so that a absolute protection cannot be guaranteed. For this reason, every person concerned is free to transmit personal data to us in alternative ways, for example by telephone.
The data protection declaration (website matter-bridge) of mediola – connected living AG is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration should be legible and understandable for the general public as well as for our customers and business partners. To ensure this, we would like to explain the terms used in advance.
We use the following terms, among others, in this data protection declaration:
a) Personal data
Personal data is any information relating to an identified or identifiable natural person (hereinafter “data subject”). A natural person is considered to be identifiable if, directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier or to one or more special features, the expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person can be identified.
b) Data subject
Data subject is any identified or identifiable natural person whose personal data is processed by the data controller.
Processing is any process carried out with or without the help of automated procedures or any such series of processes in connection with personal data such as collecting, recording, organizing, organizing, storing, adapting or changing, reading out, querying, using, disclosure by transmission, distribution or any other form of making available, matching or linking, restriction, deletion or destruction. d) Restriction of processing Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.
d) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.
Profiling is any type of automated processing of personal data, which consists in using this personal data to evaluate certain personal aspects relating to a natural person, in particular aspects relating to work performance, economic situation, health, personal Analyze or predict that natural person’s preferences, interests, reliability, behavior, whereabouts or relocation.
Pseudonymization is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that this additional information is kept separately and is subject to technical and organizational measures that ensure that the personal data not assigned to an identified or identifiable natural person.
g) Controller or data controller
The person responsible or responsible for processing is the natural or legal person, authority, institution or other body that alone or jointly with others decides on the purposes and means of processing personal data. If the purposes and means of this processing are specified by Union law or the law of the Member States, the person responsible or the specific criteria for his naming can be provided for by Union law or the law of the Member States.
Processor is a natural or legal person, public authority, institution or other body that processes personal data on behalf of the person responsible.
Recipient is a natural or legal person, public authority, institution or other body to which personal data is disclosed, regardless of whether it is a third party or not. However, authorities that may receive personal data in the context of a specific investigation mandate under Union or Member State law are not considered recipients.
j) Third party
Dritter ist eine natürliche oder juristische Person, Behörde, Einrichtung oder andere Stelle außer der betroffenen Person, dem Verantwortlichen, dem Auftragsverarbeiter und den Personen, die unter der unmittelbaren Verantwortung des Verantwortlichen oder des Auftragsverarbeiters befugt sind, die personenbezogenen Daten zu verarbeiten.
Consent is any expression of will voluntarily given by the data subject in an informed manner and unequivocally for the specific case in the form of a declaration or other clear confirmatory action with which the data subject indicates that they consent to the processing of their personal data is.
2. Name and contact details of the data controller
The person responsible within the meaning of Art. 4 No. 7 of the General Data Protection Regulation, other data protection laws applicable in the member states of the European Union and other provisions of a data protection nature is:
mediola – connected living AG, Rennbahnstraße 72-74, D-60528 Frankfurt am Main
Tel.: +4969 96870-324, E-Mail: firstname.lastname@example.org
If you have any questions or comments about data protection at mediola – connected living AG, please contact us using the keyword “data protection”.
For questions about the collection, processing or use of your personal data, for information, correction, blocking or deletion of data and revocation if necessary. If you have given your consent or object to certain data processing, please contact the person responsible.
3. Your data protection rights
As the data subject, you have the right to free of charge to
- request confirmation as to whether personal data relating to you are being processed by us (Art. 15 GDPR),
- request information about your personal data processed by us (Article 15 GDPR). In particular, you can obtain information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to correction, deletion, restriction of processing or objection, the existence of a Right of appeal, the origin of your data if it was not collected from us, and the existence of automated decision-making including profiling and, if applicable, request meaningful information about their details,
- immediately request the correction of incorrect or incomplete personal data stored by us (Article 16 GDPR),
- request the deletion of your personal data stored by us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims (Art. 17 GDPR),
- request the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful, but you refuse to delete it and we no longer need the data, but you need them to assert, exercise or defend legal claims or you have objected to the processing in accordance with Art. 21 GDPR (Art. 18 GDPR),
- receive your personal data that you have provided to us in a structured, common and machine-readable format or to request transmission to another person responsible (Article 20 GDPR),
- revoke your consent once given to us at any time. The revocation of the consent does not affect the legality of the processing carried out on the basis of the consent up to the point of revocation.
The restrictions under §§ 34 and 35 BDSG apply to the right to information and the right to erasure.
If you have asserted the right to correction, deletion or restriction of processing against us, we are obliged to inform all recipients to whom your personal data has been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or involves a disproportionate effort. You also have the right to be informed about these recipients (Art. 19 GDPR).
You also have the right to complain to the data protection supervisory authority responsible for us (https://www.datenschutz.hessen.de) about the processing of your personal data by us (Article 77 GDPR).
4. Collection of general data and information
In connection with the use of our website, web shops, user forums and other websites, it is generally not necessary for you to disclose personal data. These can be used without the separate indication of personal data.
However, for statistical purposes and for the continuous optimization of our website, we log every access to our website and every file stored on the website that is called up. We log the name of the retrieved file, date and time of retrieval, amount of data transferred, notification of successful retrieval, web browser used and requesting domain. This usage data is collected anonymously and does not allow any conclusions to be drawn about your person. If necessary, usage profiles are created using a pseudonym. We also anonymously log the IP address of a requesting computer. However, it is not possible for us to draw any conclusions about your person through this recording.
The MEDIOLA website collects a range of general data and information each time you or an automated system access the website. This is data that your Internet browser transmits to us or our web space provider. This general data and information is stored in the log files of the server. Collected can be:
- browser types and versions used,
- the operating system used by the accessing system,
- the website from which an accessing system reaches our website (so-called referrer),
- the sub-websites, which are controlled via an accessing system on our website,
- the date and time of access to the website,
- an internet protocol address (IP address),
- the internet service provider of the accessing system and which serve to avert danger in the event of attacks on our information technology systems.
When using these general data and information, MEDIA does not draw any conclusions about the data subject. Rather, this information is required in order to
- deliver the content of our website correctly,
- optimize the content of our website and the advertising for it,
- ensure the permanent functionality of our information technology systems and the technology of our website as well
- as to provide law enforcement authorities with the information necessary for law enforcement in the event of a cyber-attack.
This anonymously collected data and information is therefore evaluated by MEDIOLA statistically on the one hand and also with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are only temporarily stored separately from all personal data provided by a data subject.
The legal basis for data processing in connection with server log files is Article 6 Paragraph 1 Clause 1 Letter f GDPR. The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when you end the respective session.
The collection of the data is absolutely necessary for the provision and storage in log files for the operation of our website. There is therefore no possibility for you to object to this data processing.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. “Session or session cookies” store a so-called session ID with which various requests from your browser can be assigned to a common session. The session cookies are deleted when you log out or close the browser. Other cookies, so-called “persistent cookies” remain stored on your end device until you delete them or until their storage time/lifetime expires. These cookies enable us to recognize your browser on your next visit.
By using cookies, we can provide visitors to this website with more user-friendly services and optimize our services and offers that would not be possible without the cookie setting. Furthermore, cookies serve us to determine whether you are still logged into your customer account so that you do not have to re-enter your access data, to temporarily save the goods you have placed in the virtual shopping cart, to enable access to protected areas of our website, beforehand record entered texts so that they are not lost when the page is updated.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when the browser is closed.
However, we would like to point out that if you deactivate cookies, you may not be able to use all the functions of our website to their full extent.
MEDIOLA has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of our services. Insofar as other cookies (e.g. cookies for analyzing your surfing behavior) are stored, these are treated separately in this data protection policy.
The legal basis for the processing of personal data using the cookies required to carry out electronic communication processes or to provide certain functions you want (e.g. shopping cart function) is the legitimate interest of MEDIOLA Article 6 Paragraph 1 lit. f GDPR in the above-mentioned purposes.
You can use the links below to find out how to manage (including deactivating) cookies in the most important browsers:
Chrome Browser: https://support.google.com/accounts/answer/61416?hl=de
6. Subscription to our newsletter
With the following information we will inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedures as well as your rights of objection. By subscribing to our newsletter, you agree to receive it and the procedures described.
Content of the newsletter
We send newsletters with advertising information (hereinafter “newsletter”) only with the consent of the recipient or legal permission. If the contents of the newsletter are specifically described when registering for the newsletter, they are decisive for the consent of the user. Our newsletter also contains information about offers, product innovations and events.
Double opt-in and logging
Registration for our newsletter takes place in a so-called double opt-in procedure. This means that after registration you will receive an e-mail in which you will be asked to confirm your registration. This confirmation is necessary so that nobody can register with someone else’s e-mail address. The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes storing the time of registration and confirmation (date and time) as well as the IP address.
Use of the mail service provider MailChimp
To register for the newsletter via our website, you only need to enter your e-mail address. Optionally, we ask you to enter your first and last name. This information is only used to personalize the newsletter.
Statistical survey and analysis
The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from the MailChimp server when the newsletter is opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and time of retrieval, are initially collected. This information is used to technically improve the services based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined using the IP address) or the access times. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our aim nor that of MailChimp to monitor individual users. The evaluations serve us much more to identify the interests or preferences of our users and to adapt our content to them or to send different content according to the interests of our users, i.e. personalized newsletters that are relevant to you.
Termination and Revocation
You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. At the same time, your consent to its dispatch via MailChimp and the statistical analyzes expire. A separate revocation of the dispatch or the statistical evaluation is unfortunately not possible. You will find a link to cancel the newsletter at the end of each newsletter.
After your confirmation, we will save your e-mail address for the purpose of sending the newsletter. The legal basis is Article 6 Paragraph 1 Clause 1 Letter a GDPR. Your email address will be saved for the duration of your subscription. For the purpose of documenting your unsubscription, your e-mail address will be retained by MailChimp even after you have deactivated the newsletter subscription. We also inform you that the legal basis for the consent to the sending of e-mail addresses is based on Article 6 Paragraph 1 Letter a, 7 GDPR and Article 7 Paragraph 2 No. 3 and Paragraph 3 UWG . The use of the mail service provider MailChimp, the implementation of statistical surveys and analyzes and the logging of the registration process are based on our legitimate interests in accordance with Article 6 (1) (f) GDPR. Our interest is focused on the use of a user-friendly and secure newsletter system that serves both our business interests and meets user expectations.
We would also like to point out that you can object to the future processing of your personal data at any time in accordance with the legal requirements of Article 21 GDPR. The objection can be made in particular against processing for direct advertising purposes.
7. Contact options via the website
Due to legal regulations, the MEDIOLA website contains information that enables quick electronic contact to our company and direct communication with us, which also includes a general address for so-called electronic mail (e-mail address). Accordingly, on our website we offer you the opportunity to contact us by e-mail and/or via a contact form. In this case, the information provided to you, including the contact details provided, will be stored for the purpose of processing your contact. We do not pass on this data without your consent. A comparison of the data collected in this way with data that may be collected by other components of our site does not take place either.
The processing of the data entered in the contact form takes place on the basis of the consent to be given by the user before sending the form exclusively on the basis of your consent, i.e. in accordance with Article 6 (1) (a) GDPR. You can revoke this consent at any time. An informal message by e-mail to the contact details given under point 2 is sufficient for this. The legality of the data processing operations that took place up until the revocation remains unaffected by the revocation. The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.
Communication via email
You can contact us at any time using the email address we have provided. In this case, only the personal data you sent to us in the e-mail will be stored. The data will only be used to answer your request. The legal basis for the processing of the data that you transmit to us when sending an e-mail is Article 6 (1) (f) GDPR.
We delete the data arising in this context after the storage is no longer necessary or restrict the processing if there are statutory storage obligations. You can object to the storage of your personal data at any time by sending an e-mail to the contact details given in Section 2. However, the correspondence cannot then be continued.
8 Social Media Plug-Ins / -Accounts
Use of YouTube with extended data protection mode
On our website we use components (videos) from YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, USA, a company of Google Inc., Amphitheater Parkway, Mountain View, CA 94043, USA. The function displays videos stored on YouTube in an iFrame on the website. The option ” – extended data protection mode -” provided by YouTube is activated. As a result, YouTube initially does not store any information about visitors to the website. If you call up a page that has an embedded video, a connection to the YouTube servers is established and the content is displayed on the website by notifying your browser. According to YouTube, when you activate the “- extended data protection mode -” data is first transmitted to the YouTube server and stored, in particular which of our Internet pages you have visited when you watch the video. If you are logged into YouTube at the same time, this information will be assigned to your YouTube member account. You can prevent this by logging out of your member account before visiting our website. YouTube is used in the interest of an attractive presentation of our online offers. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR. You can find more information about the collection and use of data by YouTube and Google, your rights in this regard and options for protecting your privacy in YouTube’s data protection information:
9 Analysis tools and online marketing
Use of Google Analytics with anonymization function.
Overview for privacy: http://www.google.com/intl/de/analytics/learn/privacy.html
Overview of data protection: http://www.google.de/intl/de/policies/privacy.
For the exceptional cases in which personal data is transferred to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework
Use of Google Adwords
We also use the Google advertising tool “Google Adwords” to advertise our website. As part of this, we use the “Conversion Tracking” analysis service from Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043-1351 USA, hereinafter “Google” on our website. Google AdWords is an internet advertising service that allows advertisers to place ads in both Google’s search engine results and the Google advertising network. Google AdWords allows an advertiser to pre-determine keywords to be used to display an ad in Google’s search engine results only when the user uses the search engine to retrieve a keyword-related search result. In the Google advertising network, the ads are distributed to topic-relevant websites using an automatic algorithm and taking into account the previously defined keywords. The purpose of Google AdWords is to promote our website by displaying interest-related advertising on the websites of third-party companies and in the search engine results of the Google search engine and displaying third-party advertising on our website. If you have reached our website via a Google ad, a cookie will be stored on your computer. Cookies are small text files that your Internet browser stores and saves on your computer. These so-called “conversion cookies” lose their validity after 30 days and are not used to identify you personally. If you visit certain pages of our website and the cookie has not yet expired, we and Google can recognize that you, as a user, have clicked on one of our ads placed with Google and have been forwarded to our site. This means that the “conversion cookie”, if it has not yet expired, is used to determine whether certain sub-pages, such as the shopping cart from an online shop system, were accessed on our website. The “conversion cookie” enables both us and Google to understand whether a person who came to our website via an AdWords ad generated revenue, i.e. completed or canceled a purchase. The information obtained with the help of the “conversion cookies” is used by Google to create visit statistics for our website. These statistics tell us the total number of users who clicked on our ad and which pages of our website were then accessed by the respective user. However, we or other advertisers via “Google Adwords” do not receive any information with which users can be personally identified. The processing takes place on the basis of Art. 6 Para. 1 lit. f GDPR. We have a legitimate interest in targeted advertising and in analyzing the effect and efficiency of this advertising in order to optimize both our website and its advertising. You can prevent the installation of “conversion cookies” by setting your browser accordingly, for example by using a browser setting that generally deactivates the automatic setting of cookies or specifically only blocks cookies from the “googleadservices.com” domain.
Use of Google AdSense
Use of Google Remarketing
Use of DoubleClick
Use of affilinet tracking cookies
We use affilinet tracking cookies from affilinet GmbH, Sapporobogen 6-8 in 80637 Munich, on our website for the correct recording of sales and/or leads. Cookies are small text files that your computer saves when you visit a website. The cookies used by affilinet are “session cookies” which are automatically deleted after the end of the website visit. On the other hand, so-called “persistent cookies” are used, which are deleted after 30 days by default. These affilinet tracking cookies do not store any personal data. Rather, only the identification number of the intermediary partner and the serial number of the advertising material clicked on by the website visitor are recorded. This information is required for the purpose of payment processing between the website operator and the advertiser. When a transaction is concluded, the partner identification number is used to allocate the commission to be paid to the mediating partner. affilinet tracking cookies are stored on the basis of Article 6 (1) (f) GDPR. The website operator has a legitimate interest in the correct recording of sales/leads in order to be able to process payments. You can prevent the installation of cookies by setting your browser software accordingly; we would like to point out to you however that in this case you can if applicable not use all functions of our website in full. Further information and affilinet’s applicable data protection regulations can be found at https://www.affili.net/de/footeritem/datenschutz.
10. Analysis Tools and Software Support
Use of bug tracking software / mantis bug tracker
We use what is known as “bug tracking” software, the Mantis Bug Tracker (MantisBT), to solve your technical problem, for error analysis, troubleshooting and thus optimization of our software. MantisBT is free bug management and tracking software released under the terms of the GNU General Public License. To use this software, a Mantis user account will only be created upon your specific request. This requires the disclosure of a valid e-mail address. You will receive an e-mail with a confirmation link to confirm, update and password protect your account. You can optionally enter first and last name instead of the user name. As a registered user, you can create so-called tickets, read and comment on the tickets of other users and upload and download file attachments. As part of the ticket creation and processing, the specification of further data such as device list with device categories, device types and/or manufacturer names that you have set for control with the MEDIOLA software, all devices used or taught in, device events (e.g. error messages from devices, etc.) .), device actions (states and operation), device connections (automation rules, tasks, scenes and trade profiles, etc.), system events (e.g. system error messages) etc. may be required to process your technical problem or to add new features for software releases. We use secure SSL encryption on our websites to protect your personal data and other confidential content. Your data is stored on specially protected servers at service providers in Germany such as ALL-INKL.COM – Neue Medien Münnich – Hauptstraße 68, D-02742 Friedersdorf. This information is collected for the purpose of error analysis, to process your inquiries, to solve your technical problem, to supplement our software with new features and to optimize our software/products and to qualify the support and stored for as long as it takes to process your inquiry , the solution of the technical problem or the addition of new features is necessary or the user account is deleted. On the one hand, the processing takes place on the basis of Article 6 (1) (f) GDPR. MEDIOLA has a legitimate interest in administration, tracking and analysis so that a functioning product, functioning software can be created, optimised, used and distributed.
Objection according to Article 21 GDPRIf we process your personal data on the basis of our overriding legitimate interest within the framework of a balancing of interests in accordance with Article 6 (1) (f) GDPR, you have the right at any time to object to this processing with effect for the to object in the future free of charge. If we process your personal data in order to operate direct advertising, you also have the right at any time to object to the processing for the purpose of such advertising with effect for the future free of charge; this also applies to profiling insofar as it is associated with such direct advertising. Please address your objection to the person responsible named in section 2 (e.g. by e-mail).
Stand 09/2021 Rev.1