Imprint and data protection
Information according to § 5 TMG
Operator and responsible for the content of this store is:doctorseyes GmbH
Abbey St. 28
88416 Ochsenhausen
Commercial register: 641792
Register court: Local court Biberach HRB
Represented by:
Thomas Henninger
Contact
Phone: +49 (0) 7352 93 92 12
Fax: +49 (0) 7352 93 92 14
E-mail: info@doctorseyes.de
Sales tax ID
Sales tax identification number in accordance with § 27 a of the German Sales Tax Act:
DE813948915
Packaging law:
Registration number according to § 9 VerpackG: DE2961306516952
Editorial responsible:
Thomas Henninger
Consumer dispute resolution/universal arbitration board
We are not willing or obliged to participate in dispute resolution proceedings before a consumer arbitration board.
Liability for contents
As a service provider, we are, in accordance with § 7 para.1 TMG is responsible for its own content on these pages under the general laws. According to §§ 8 to 10 TMG, however, we are not obligated as a service provider to monitor transmitted or stored third-party information or to investigate circumstances that indicate illegal activity.
Obligations to remove or block the use of information in accordance with general laws remain unaffected. However, liability in this regard is only possible from the time of knowledge of a concrete infringement. If we become aware of any such infringements, we will remove the content in question immediately.
Liability for links
Our offer contains links to external websites of third parties, on whose contents we have no influence. Therefore, we cannot assume any liability for these external contents. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal contents were not recognizable at the time of linking.
However, a permanent control of the contents of the linked pages is not reasonable without concrete evidence of a violation of the law. If we become aware of any infringements of the law, we will remove such links immediately.
Copyright
The contents and works created by the site operators on these pages are subject to German copyright law. Duplication, processing, distribution, or any form of commercialization of such material beyond the scope of the copyright law shall require the prior written consent of its respective author or creator. Downloads and copies of this page are only permitted for private, non-commercial use.
Insofar as the content on this page was not created by the operator, the copyrights of third parties are respected. In particular, third-party content is identified as such. Should you nevertheless become aware of a copyright infringement, please inform us accordingly. If we become aware of any infringements, we will remove such content immediately.
Privacy policy
Our handling of your data and your rights
– Information pursuant to Articles 13, 14 and 21 of the General Data Protection Regulation (GDPR) -.
Dear Customer,
In the following, we inform you about the processing of your personal data by us and the claims and rights to which you are entitled according to the data protection regulations.
Which data is processed in detail and how it is used depends primarily on the services requested or agreed upon.
1. who is responsible for data processing and whom can I contact?
Responsible entity is:
doctorseyes GmbH
Abbey St. 28
88416 Ochsenhausen
Tel: 07352939213
E-mail: info@doctorseyes.de
2. what sources and data do we use?
We process personal data that we receive from you in the course of our business relationship. In addition, we process – to the extent necessary for the provision of our services – personal data that we have received from other companies (e.g. SCHUFA) in a permissible manner (e.g. for the execution of orders, for the fulfillment of contracts or on the basis of consent given by you). On the other hand, we process personal data that we have permissibly obtained from publicly accessible sources (e.g. debtor lists, commercial and association registers, press, media) and are allowed to process.
Relevant personal data are personal details (name, address and other contact details, date and place of birth and nationality) and authentication data. When you book an appointment, we typically collect your name, address, phone number, email address, and date/time of the appointment, among other information.
3. what do we process your data for (purpose of processing) and on what legal basis?
We process personal data in accordance with the provisions of the European Data Protection Regulation (DSGVO) and the German Federal Data Protection Act (BDSG):
3.1 For the fulfillment of contractual obligations (Article 6 para. 1b DSGVO)
The processing of personal data (Article 4 No. 2 DSGVO) is carried out for the provision and mediation of our service, in particular for the execution of our contracts or pre-contractual measures with you and the execution of your orders, as well as all activities necessary with the operation and management of a company.
The purposes of data processing primarily depend on the specific product or order and include, among other things, online appointment booking and online appointment management.
Further details on the purpose of data processing can be found in the respective contract documents and terms and conditions.
3.2 Within the framework of the balancing of interests (Article 6 para. 1f DSGVO)
To the extent necessary, we process your data beyond the actual performance of the contract to protect legitimate interests of us or third parties, such as in the following cases:
- Ensuring IT security and IT operations;
- Testing and optimization of procedures for needs analysis and direct customer contact;
- advertising or market and opinion research, unless you have objected to the use of your data;
- Assertion of legal claims and defense in legal disputes;
- Building and facility security measures (e.g., access controls);
- Measures to ensure the right of domicile;
- Measures for business management and further development of services and products;
- Prevention and detection of crime.
3.3 Based on your consent (Article 6 (1a) DSGVO)
Insofar as you have given us consent to process personal data for certain purposes (e.g. forwarding of data, evaluation of user data for marketing purposes), the lawfulness of this processing is based on your consent. Consent given can be revoked at any time. This also applies to the revocation of declarations of consent given to us prior to the application of the GDPR, i.e. prior to May 25, 2018.
Please note that the revocation is only effective for the future. Processing that took place before the revocation is not affected.
3.4 Due to legal requirements (Article 6 para. 1c DSGVO) or in the public interest (Article 6 para. 1e DSGVO)
In addition, as a company we are subject to various legal obligations, i.e. statutory requirements (e.g. commercial laws, tax laws). The purposes of the processing include, among others, the fulfillment of control and reporting obligations under tax law and the assessment and management of risks.
4. who gets my data?
Within our company, access to your data is granted to those departments that need it to fulfill our contractual and legal obligations. Processors used by us (Article 28 DSGVO) may also receive data for these purposes. These are companies in the categories of IT services, logistics, printing services, telecommunications, debt collection, consulting and advisory services, and sales and marketing.
With regard to the transfer of data to recipients outside our company, it should be noted that we only pass on information about you if this is required by law, you have given your consent or we are authorized to provide information.
Under these conditions, recipients of personal data may include: – Law enforcement authorities
5. how long will my data be stored?
To the extent necessary, we process and store your personal data for the duration of our business relationship, which includes, for example, the initiation and execution of a contract.
In addition, we are subject to various storage and documentation obligations arising from the German Commercial Code (HGB) and the German Fiscal Code (AO), among other things. The periods specified there for storage or documentation are two to ten years.
Finally, the storage period is also assessed according to the statutory limitation periods, which, for example, according to Sections 195 et seq. of the German Civil Code (BGB), are generally three years, but in certain cases can be up to thirty years.
6. is data transferred to a third country or to an international organization?
Data is only transferred to third countries (countries outside the European Economic Area – EEA) if this is necessary for the execution of your orders, is required by law or you have given us your consent. We will inform you separately about details, if required by law.
7. what data protection rights do i have?
Every data subject has the right to information under Article 15 GDPR, the right to rectification under Article 16 GDPR, the right to erasure under Article 17 GDPR, the right to restriction of processing under Article 18 GDPR and the right to data portability under Article 20 GDPR. With regard to the right to information and the right of deletion, the restrictions pursuant to Sections 34 and 35 BDSG apply. In addition, there is a right of appeal to a data protection supervisory authority (Article 77 DSGVO in conjunction with Section 19 BDSG).
8. is there an obligation to provide data?
Within the scope of our business relationship, you only have to provide the personal data that is required for the establishment, implementation and termination of a business relationship or that we are legally obligated to collect. Without this data, we will usually have to refuse to conclude the contract or execute the order, or we will no longer be able to perform an existing contract and may have to terminate it.
9. to what extent is there automated decision-making in individual cases?
For the establishment and implementation of the business relationship, we generally do not use fully automated decision-making pursuant to Article 22 DSGVO. If we use these procedures in individual cases, we will inform you separately if required by law.
10. to what extent will my data be used for profiling (scoring)?
As a matter of principle, we do not use profiling in accordance with Article 22 DSGVO. Should we use this procedure in individual cases, we will inform you of this separately, insofar as this is required by law.
11. google fonts privacy policy
On our website we use Google Fonts. These are the “Google Fonts” of the company Google Inc. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services.
You do not need to log in or set a password to use Google Fonts. Furthermore, no cookies are stored in your browser. The files (CSS, fonts) are requested via the Google domains fonts.googleapis.com and fonts.gstatic.com. According to Google, CSS and fonts requests are completely separate from all other Google services. If you have a Google account, you do not need to worry that your Google account data, while using Google Fonts, will be transmitted to Google. Google records the use of CSS (Cascading Style Sheets) and the fonts used and stores this data securely. We will take a detailed look at how the data storage looks exactly.
What are Google Fonts?
Google Fonts (formerly Google Web Fonts) is a directory of over 800 fonts that Google makes available to its users free of charge.
Many of these fonts are released under the SIL Open Font License , while others are released under the Apache License . Both are free software licenses.
Why do we use Google Fonts on our website?
Google Fonts allows us to use fonts on our own website, but we don’t have to upload them to our own server. Google Fonts is an important component in keeping the quality of our website high. All Google fonts are automatically optimized for the web and this saves data volume and is a great advantage especially for use with mobile devices. When you visit our site, the low file size ensures fast loading time. Furthermore, Google Fonts are secure web fonts. Different image synthesis systems (rendering) in different browsers, operating systems and mobile devices can lead to errors. Such errors can sometimes visually distort texts or entire web pages. Thanks to the fast Content Delivery Network (CDN), there are no cross-platform issues with Google Fonts. Google Fonts supports all major browsers (Google Chrome, Mozilla Firefox, Apple Safari, Opera) and works reliably on most modern mobile operating systems, including Android 2.2+ and iOS 4.2+ (iPhone, iPad, iPod). So, we use the Google Fonts so that we can display our entire online service as beautifully and consistently as possible.
What data is stored by Google?
When you visit our website, the fonts are reloaded via a Google server. This external call transmits data to the Google servers. In this way, Google also recognizes that you or your IP address visit our website. The Google Fonts API is designed to reduce the use, storage, and collection of end-user data to what is necessary for proper font delivery. By the way, API stands for “Application Programming Interface” and serves, among other things, as a data transmitter in the software area.
Google Fonts stores CSS and font requests securely at Google and is therefore protected. Through the collected usage figures, Google can determine how well the individual fonts are received. Google publishes the results on internal analytics pages, such as Google Analytics. In addition, Google also uses data from its own web crawler to determine which web pages use Google fonts. This data is published in Google Fonts’ BigQuery database. Entrepreneurs and developers use Google’s BigQuery web service to explore and move large amounts of data.
It should be noted, however, that each Google Font request also automatically transmits information such as language settings, IP address, browser version, browser screen resolution, and browser name to the Google servers. Whether this data is also stored cannot be clearly determined or is not clearly communicated by Google.
How long and where is the data stored?
Google stores requests for CSS assets for one day on its servers, which are mainly located outside the EU. This allows us to use fonts with the help of a Google stylesheet. A stylesheet is a format template that can be used to quickly and easily change the design or font of a web page, for example.
The font files are stored by Google for one year. Google thus pursues the goal of fundamentally improving the loading time of websites. When millions of web pages reference the same fonts, they are cached after the first visit and immediately reappear on all other web pages visited later. Sometimes Google updates font files to reduce file size, increase language coverage, and improve design.
How can I delete my data or prevent data storage?
The data that Google stores for a day or a year cannot simply be deleted. The data is automatically transmitted to Google when the page is called up. To delete this data ahead of time, you will need to contact Google support on Contact https://support.google.com/?hl=de&tid=311280441 . Data storage you prevent in this case only if you do not visit our site.
Unlike other web fonts, Google allows us unlimited access to all fonts. So we can access an unlimited sea of fonts and get the most out of our website. You can find out more about Google Fonts and other issues at https://developers.google.com/fonts/faq?tid=311280441. There, Google addresses privacy-related matters, but really detailed information about data storage is not included. It is relatively difficult to get really precise information from Google about stored data.
You can also find out what data is generally collected by Google and what this data is used for at https://www.google.com/intl/de/policies/privacy/ .
Google Fonts Local Privacy Policy
On our website we use Google Fonts from Google Inc. The company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for the European area. We have embedded the Google fonts locally, i.e. on our web server – not on Google’s servers. This means that there is no connection to Google servers and therefore no data transfer or storage.
What are Google Fonts?
Google Fonts used to be called Google Web Fonts. This is an interactive directory of over 800 fonts that can be Google free of charge. With Google Fonts, you could use fonts without uploading them to your own server. But to prevent any information transfer to Google servers in this regard, we have downloaded the fonts to our server. In this way, we act in a privacy compliant manner and do not send any data to Google Fonts.
Unlike other web fonts, Google allows us unlimited access to all fonts. So we can access an unlimited sea of fonts and get the most out of our website. You can find out more about Google Fonts and other issues at https://developers.google.com/fonts/faq?tid=311280441.
Google Analytics Privacy Policy
We use the analysis tracking tool Google Analytics (GA) of the American company Google Inc. on our website. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. Google Analytics collects data about your actions on our website. For example, when you click on a link, this action is stored in a cookie and sent to Google Analytics. With the help of the reports we receive from Google Analytics, we can better tailor our website and service to your needs. In the following, we will go into more detail about the tracking tool and, in particular, inform you about what data is stored and how you can prevent it.
What is Google Analytics?
Google Analytics is a tracking tool used for traffic analysis of our website. In order for Google Analytics to work, a tracking code is built into the code of our website. When you visit our website, this code records various actions that you perform on our website. As soon as you leave our website, this data is sent to the Google Analytics servers and stored there.
Google processes the data and we get reports about your user behavior. These may include, but are not limited to, the following reports:
- Target group reports: Through target group reports, we get to know our users better and know more precisely who is interested in our service.
- Ad reports: Ad reports make it easier for us to analyze and improve our online advertising.
- Acquisition reports: Acquisition reports give us helpful information on how to get more people interested in our service.
- Behavioral reports: This is where we learn how you interact with our website. We can track which path you take on our site and which links you click on.
- Conversion reports: Conversion is the name given to a process in which you take a desired action as a result of a marketing message. For example, if you go from being just a website visitor to a buyer or newsletter subscriber. These reports help us learn more about how our marketing efforts are resonating with you. This is how we want to increase our conversion rate.
- Real-time reports: Here we always find out immediately what is happening on our website. For example, we can see how many users are currently reading this text.
Why do we use Google Analytics on our website?
Our goal with this website is clear: we want to provide you with the best possible service. Google Analytics statistics and data help us achieve this goal.
The statistically evaluated data gives us a clear picture of the strengths and weaknesses of our website. On the one hand, we can optimize our site to make it easier for interested people to find it on Google. On the other hand, the data helps us to better understand you as a visitor. Thus, we know very well what we need to improve on our website in order to provide you with the best possible service. The data also serve us to carry out our advertising and marketing measures in a more individual and cost-effective manner. After all, it only makes sense to show our products and services to people who are interested in them.
What data is stored by Google Analytics?
Google Analytics uses a tracking code to create a random, unique ID associated with your browser cookie. This is how Google Analytics recognizes you as a new user. The next time you visit our site, you will be recognized as a “returning” user. All collected data is stored together with this user ID. This is what makes it possible to evaluate pseudonymous user profiles in the first place.
In order to use Google Analytics to analyze our website, a property ID must be inserted into the tracking code. The data is then stored in the corresponding property. For each new property created, the Google Analytics 4 property is by default. Alternatively, you can also create the Universal Analytics Property. Depending on the property used, data is stored for different lengths of time.
Identifiers such as cookies and app instance IDs measure your interactions on our website. Interactions are all types of actions that you perform on our website. If you also use other Google systems (such as a Google account), data generated via Google Analytics may be linked to third-party cookies. Google does not share Google Analytics data unless we, as the website owner, authorize it. Exceptions may occur when required by law.
The following cookies are used by Google Analytics:
Name: _ga
Value: 2.1326744211.152311280441-5
Purpose: By default, analytics.js uses the _ga cookie to store the user ID. Basically, it is used to distinguish the website visitors.
Expiration date: after 2 years
Name: _gid
Value: 2.1687193234.152311280441-1
Purpose: The cookie is also used to distinguish the website visitors
Expiration date: after 24 hours
Name: _gat_gtag_UA_<property-id>
Value: 1
Purpose: Used to lower the request rate. When Google Analytics is deployed via Google Tag Manager, this cookie is named _dc_gtm_ <property-id>.
Expiration date: after 1 minute
Name: AMP_TOKEN
Value: no data
Purpose: The cookie has a token that can be used to retrieve a user ID from the AMP client ID service. Other possible values indicate a logout, a request, or an error.
Expiration date: after 30 seconds up to one year
Name: __utma
Wert: 1564498958.1564498958.1564498958.1
Purpose: This cookie is used to track your behavior on the website and measure performance. The cookie is updated every time information is sent to Google Analytics.
Expiration date: after 2 years
Name: __utmt
Value: 1
Purpose: The cookie is used like _gat_gtag_UA_<property-id> to throttle the request rate.
Expiration date: after 10 minutes
Name: __utmb
Value: 3.10.1564498958
Purpose: This cookie is used to determine new sessions. It is updated every time new data or info is sent to Google Analytics.
Expiration date: after 30 minutes
Name: __utmc
Value: 167421564
Purpose: This cookie is used to set new sessions for returning visitors. This is a session cookie and is only stored until you close the browser again.
Expiration date: After closing the browser
Name: __utmz
Value: m|utmccn=(referral)|utmcmd=referral|utmcct=/
Purpose: The cookie is used to identify the source of traffic to our website. That is, the cookie stores from where you came to our website. This may have been another site or an advertisement.
Expiration date: after 6 months
Name: __utmv
Value: no specification
Purpose: The cookie is used to store custom user data. It is updated whenever information is sent to Google Analytics.
Expiration date: after 2 years
Note: This list cannot claim to be complete, as Google also changes the choice of its cookies time and again.
Here we show you an overview of the most important data collected with Google Analytics:
Heatmaps: Google creates so-called heatmaps. Via heatmaps you can see exactly those areas you click on. This way we get information where you are “traveling” on our site.
Session duration: Google defines session duration as the time you spend on our site without leaving. If you have been inactive for 20 minutes, the session will end automatically.
Bounce rate (English: bounce rate): A bounce rate is when you view only one page on our website and then leave our website again.
Account creation: When you create an account on our website or place an order, Google Analytics collects this data.
IP address: The IP address is only shown in abbreviated form so that no clear assignment is possible.
Location: The IP address can be used to determine the country and your approximate location. This process is also referred to as IP location determination.
Technical information: Technical information may include your browser type, Internet service provider, or screen resolution.
Source of origin: Google Analytics or, of course, we are also interested in which website or which advertising you came to our site from.
Other data includes contact information, any ratings, playing media (for example, if you play a video through our site), sharing content through social media, or adding to your favorites. The list does not claim to be complete and only serves as a general orientation of the data storage by Google Analytics.
How long and where is the data stored?
Google has your servers spread all over the world. Most servers are located in America and consequently your data is mostly stored on American servers. Here you can read exactly where Google data centers are located: https://www.google.com/about/datacenters/inside/locations/?hl=de
Your data is distributed on different physical media. This has the advantage that the data can be retrieved more quickly and is better protected against manipulation. There are appropriate emergency programs for your data in every Google data center. For example, if Google’s hardware fails or natural disasters cripple servers, the risk of service interruption at Google still remains low.
The retention period of the data depends on the properties used. When using the newer Google Analytics 4 properties, the retention period of your user data is fixed at 14 months. For other so-called event data, we have the option to choose a retention period of 2 months or 14 months.
For Universal Analytics properties, Google Analytics defaults to a retention period of 26 months for your user data. Then your user data will be deleted. However, we have the option to choose the retention period of user data. We have five variants available for this purpose:
- Deletion after 14 months
- Deletion after 26 months
- Deletion after 38 months
- Deletion after 50 months
- No automatic deletion
In addition, there is also the option that data will only be deleted if you no longer visit our website within the period we have chosen. In this case, the retention period will be reset each time you visit our website again within the specified period.
Once the specified period has expired, the data is deleted once a month. This retention period applies to your data associated with cookies, user recognition and advertising IDs (e.g. DoubleClick domain cookies). Reporting results are based on aggregated data and are stored independently of user data. Aggregated data is a merging of individual data into a larger unit.
How can I delete my data or prevent data storage?
Under European Union data protection law, you have the right to access, update, delete or restrict your data. Using the browser add-on to disable Google Analytics JavaScript (ga.js, analytics.js, dc.js) you prevent Google Analytics from using your data. You can download the browser add-on at Download and install https://tools.google.com/dlpage/gaoptout?hl=de Please note that this add-on only disables data collection by Google Analytics.
If you generally want to disable, delete or manage cookies (independently of Google Analytics), there are separate instructions for each browser:
Chrome: Delete, enable and manage cookies in Chrome
Safari: Managing cookies and website data with Safari
Firefox: Delete cookies to remove data that websites have placed on your computer
Internet Explorer: Delete and manage cookies
Microsoft Edge: Delete and manage cookies
Please note that when using this tool, data from you may also be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. So data may not simply be transferred to, stored in, and processed in insecure third countries unless there are appropriate safeguards (such as EU standard contractual clauses) between us and the non-European service provider.
We hope we have been able to provide you with the most important information about the data processing of Google Analytics. If you want to learn more about the tracking service, we recommend these two links: http://www.google.com/analytics/terms/de.html and https://support.google.com/analytics/answer/6004245?hl=de.
Google Tag Manager Privacy Policy
For our website we use the Google Tag Manager of the company Google Inc. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. This tag manager is one of many helpful marketing products from Google. Google Tag Manager allows us to centrally incorporate and manage sections of code from various tracking tools we use on our website.
In this privacy policy, we want to explain in more detail what Google Tag Manager does, why we use it, and in what form data is processed.
What is Google Tag Manager?
Google Tag Manager is an organizational tool that allows us to include and manage website tags centrally and through a user interface. Tags are small sections of code that, for example, record (track) your activity on our website. For this purpose, JavaScript code sections are inserted into the source code of our page. The tags often come from Google’s own products such as Google Ads or Google Analytics, but tags from other companies can also be included and managed via the manager. Such tags perform different tasks. They can collect browser data, feed marketing tools with data, embed buttons, set cookies, and also track users across multiple websites.
Why do we use Google Tag Manager for our website?
As the saying goes: organization is half the battle! And of course, this also applies to the maintenance of our website. In order to make our website as good as possible for you and all people interested in our products and services, we need various tracking tools such as Google Analytics. The data collected from these tools shows us what you are most interested in, where we can improve our services and which people we should still show our offers to. And for this tracking to work, we need to embed appropriate JavaScript codes into our website. In principle, we could include each code section of each tracking tool separately in our source code. However, this requires a relatively large amount of time and it is easy to lose track. That’s why we use Google Tag Manager. We can easily incorporate the necessary scripts and manage them from one place. Moreover, Google Tag Manager offers an easy-to-use interface and you don’t need any programming skills. This is how we manage to keep order in our daytime jungle.
What data is stored by Google Tag Manager?
The Tag Manager itself is a domain that does not set cookies or store data. It acts as a mere “manager” of the implemented tags. The data is collected by the individual tags of the different web analytics tools. The data is virtually passed through to the individual tracking tools in Google Tag Manager and is not stored.
However, the situation is quite different with the embedded tags of the various web analytics tools, such as Google Analytics. Depending on the analysis tool, various data about your web behavior is usually collected, stored and processed with the help of cookies. For this, please read our privacy texts on the individual analysis and tracking tools that we use on our website.
In the Tag Manager account settings, we have allowed Google to receive anonymized data from us. However, this is only the use and usage of our tag manager and not your data stored via the code sections. We allow Google and others to receive selected data in anonymized form. We thus consent to the anonymous disclosure of our website data. Despite extensive research, we were unable to find out exactly which summarized and anonymous data is forwarded. In any case, Google deletes all information that could identify our website. Google aggregates the data with hundreds of other anonymous website data and, as part of benchmarking measures, creates user trends. In benchmarking, own results are compared with those of competitors. Processes can be optimized on the basis of the information collected.
How long and where is the data stored?
When Google stores data, that data is stored on Google’s own servers. The servers are distributed all over the world. Most are located in America. At https://www.google.com/about/datacenters/inside/locations/?hl=de you can read exactly where the Google servers are located.
How long the individual tracking tools store data from you can be found in our individual privacy texts for the individual tools.
How can I delete my data or prevent data storage?
Google Tag Manager itself does not set cookies, but manages tags from various tracking websites. In our privacy texts for the individual tracking tools, you will find detailed information on how to delete or manage your data.
Please note that when using this tool, data from you may also be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. So data may not simply be transferred to, stored in, and processed in insecure third countries unless there are appropriate safeguards (such as EU standard contractual clauses) between us and the non-European service provider.
If you want to learn more about Google Tag Manager, we recommend that you visit the FAQs at https://www.google.com/intl/de/tagmanager/faq.html.
Email marketing
Of course, we want to stay in touch with you and always present you the most important news about our company. Among other things, we use e-mail marketing, an essential component of our online marketing, for this purpose. If you agree or if permitted by law, we will send you newsletters, emails or other notifications. When we use the term “newsletter” in the following text, we mainly mean e-mails sent on a regular basis.
How to sign up for our email marketing?
If you want to participate in our e-mail marketing (mostly via newsletter), you usually just have to register with your e-mail address. To do this, fill out an online form and submit it. However, it may also happen that we ask you for your salutation and name, for example, so that we can also write to you personally.
Basically, subscribing to newsletters works with the help of the so-called “double opt-in procedure”. After signing up for our newsletter on our website, you will receive an email confirming your newsletter subscription. This ensures that the e-mail address belongs to you and that no one has registered with a third-party e-mail address. We or a notification tool we use logs each and every login. This is necessary so that we can also prove the legally correct registration process. As a rule, the time of registration, the time of registration confirmation and your IP address are stored. In addition, when you make changes to your stored data, this is also logged.
How long may we store your e-mail address?
If you unsubscribe your email address from our email/newsletter distribution list, we may store your address for up to three years based on our legitimate interests so that we can still prove your consent at that time. We may only process this data if we need to defend ourselves against any claims.
However, if you confirm that you have given us your consent to subscribe to the newsletter, you can submit an individual deletion request at any time. If you permanently object to the consent, we reserve the right to store your e-mail address in a blacklist. As long as you have voluntarily subscribed to our newsletter, we will of course also keep your e-mail address.
On what legal basis do we conduct email marketing?
The sending of our newsletter is based on your consent. This means that we may only send you a newsletter if you have actively signed up for it beforehand. If consent is not required, then the newsletter is sent on the basis of the legitimate interest in direct marketing, provided this is legally permitted. Even if we engage a service provider, this happens on the basis of our legitimate interest. We record your registration process so that we can always prove that it complies with our laws.
What’s in our newsletters?
Of course, we do not want to bother you in any way with our newsletters. That’s why we really always try to provide only relevant and interesting content. For example, you can learn more about our company, our services or products. Since we are always improving our offers, our newsletter will also let you know when there is news or when we are offering special, lucrative promotions.
If we use a service provider that offers a professional mailing tool for our email marketing, we do so in order to be able to offer you fast and secure newsletters.
What data is stored?
When you become a subscriber to our newsletter through our website, you confirm by email that you are a member of an email list. In addition to IP address and e-mail address, your name, address and telephone number may also be stored. However, only if you agree to this data storage. In addition, information about your device or about your preferred content on our website may be stored. For more on storing data when you visit a website, see the “Automatic data storage” section.
Information on specific email marketing services, if any, can be found in the following sections.
How can I cancel my subscription?
You have the possibility to cancel your newsletter subscription at any time. To do this, you only need to revoke your consent to the newsletter subscription. This normally takes only a few minutes or a few clicks. Most of the time you will find a link to unsubscribe directly in our newsletter. If you really can’t find the link in the newsletter, please contact us by mail and we will cancel your newsletter subscription.
Sendinblue Privacy Policy
You can sign up for our newsletter for free on our website. To make sure this works, we use the Sendinblue email delivery service for our newsletter. This is a service of the German company Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin.
We are of course very pleased if you subscribe to our newsletter. In this way, we can always provide you with up-to-date, first-hand information about what is going on in our company at any given time. However, you should know that during the subscription process to the newsletter, all the data you enter (such as your email address or your first and last name) will be stored and managed on our server and at Sendinblue. This also involves personal data. For example, in addition to the time and date of registration, your IP address is also stored. In the course of the registration you also agree that we can send you the newsletter and it is further referred to this privacy policy.
The newsletter service also provides us with helpful analytics. This means that when we send out a newsletter, we learn, for example, whether and when the newsletter was opened by you. Even if and on which link you click in the newsletter is recognized and recorded by the software. This information helps enormously to adapt and optimize our service to your wishes and concerns. After all, we naturally want to provide you with the best possible service. Thus, in addition to the data already mentioned above, such data about your user behavior is also stored.
You can revoke your consent to this data processing at any time. For example, if you click on the unsubscribe link directly in the newsletter. After unsubscribing, the personal data will be deleted from our server and from the Sendinblue servers, which are located in Germany. You have a right to free information about your stored data and, if applicable, also a right to deletion, blocking or correction.
If you wish to obtain more detailed information on data processing, we recommend that you read the company’s privacy policy at https://de.sendinblue.com/legal/privacypolicy/ and also the following information page at https://de.sendinblue.com/informationen-newsletter-empfaenger/.
Google reCAPTCHA Privacy Policy
Our primary goal is to secure and protect our website in the best possible way for you and for us. To ensure this, we use Google reCAPTCHA from Google Inc. For the European area, the company Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible for all Google services. With reCAPTCHA we can verify that you are a real flesh and blood human being and not a robot or some other spam software. By spam we mean any unsolicited information sent to us electronically. In the classic CAPTCHAS, you usually had to solve text or picture puzzles for review. With reCAPTCHA from Google, we usually don’t have to bother you with such riddles. Here, in most cases, it is enough to simply check a box to confirm that you are not a bot. With the new Invisible reCAPTCHA version, you don’t even have to check a box. You will learn exactly how this works and, above all, which data is used for this purpose in the course of this privacy policy.
What is reCAPTCHA?
reCAPTCHA is a free captcha service from Google that protects websites from spam software and abuse by non-human visitors. Most often, this service is used when you fill out forms on the Internet. A captcha service is a kind of automatic Turing test designed to ensure that an action on the Internet is performed by a human and not a bot. In the classic Turing test (named after the computer scientist Alan Turing), a human establishes the distinction between a bot and a human. In the case of captchas, this is also done by the computer or a software program. Classic captchas work with small tasks that are easy for humans to solve, but present significant difficulties for machines. With reCAPTCHA, you no longer have to actively solve puzzles. The tool uses advanced risk techniques to distinguish humans from bots. Here you only need to check the “I am not a robot” text box, or with Invisible reCAPTCHA even that is no longer necessary. With reCAPTCHA, a JavaScript element is included in the source code and then the tool runs in the background and analyzes your user behavior. The software calculates a so-called captcha score from these user actions. Google uses this score to calculate how likely you are to be human even before you enter the captcha. reCAPTCHA or captchas in general are used whenever bots could manipulate or abuse certain actions (such as registrations, surveys, etc.).
Why do we use reCAPTCHA on our website?
We only want to welcome flesh and blood people to our side. Bots or spam software of various kinds can safely stay at home. That’s why we do everything we can to protect ourselves and provide the best possible user experience for you. For this reason, we use Google reCAPTCHA from the company Google. This way we can be pretty sure that we remain a “bot-free” website. By using reCAPTCHA, data is transmitted to Google to determine whether you are actually a human. reCAPTCHA therefore serves the security of our website and, by extension, your security. For example, without reCAPTCHA, it could happen that a bot registers as many e-mail addresses as possible during registration in order to subsequently “spam” forums or blogs with unwanted advertising content. With reCAPTCHA we can avoid such bot attacks.
What data is stored by reCAPTCHA?
reCAPTCHA collects personal data from users in order to determine whether actions on our website actually originate from people. Thus, the IP address and other data required by Google for the reCAPTCHA service can be sent to Google. IP addresses are almost always shortened beforehand within the member states of the EU or other contracting states to the Agreement on the European Economic Area before the data ends up on a server in the USA. The IP address is not combined with other data from Google unless you are logged in with your Google account while using reCAPTCHA. First, the reCAPTCHA algorithm checks if Google cookies from other Google services (YouTube. Gmail, etc.) are already placed on your browser. Then, reCAPTCHA sets an additional cookie in your browser and captures a snapshot of your browser window.
The following list of collected browser and user data, does not claim to be complete. Rather, they are examples of data that, to our knowledge, are processed by Google.
- Referrer URL (the address of the page from which the visitor comes)
- IP address (e.g. 256.123.123.1)
- Info about the operating system (the software that allows your computer to run. Known operating systems are Windows, Mac OS X or Linux).
- Cookies (small text files that store data in your browser)
- Mouse and keyboard behavior (every action you perform with the mouse or keyboard is saved)
- Date and language settings (which language or date you have preset on your PC will be saved)
- All JavaScript objects (JavaScript is a programming language that allows websites to adapt to the user. JavaScript objects can collect all kinds of data under one name)
- Screen resolution (shows how many pixels the image display consists of)
It is undisputed that Google uses and analyzes this data even before you click on the “I am not a robot” checkbox. With the Invisible reCAPTCHA version, there is even no checkboxing and the whole recognition process runs in the background. Google does not tell you in detail exactly how much and which data it stores.
The following cookies are used by reCAPTCHA: Here we refer to the reCAPTCHA demo version from Google at. https://www.google.com/recaptcha/api2/demo. All these cookies require a unique identifier for tracking purposes. Here is a list of cookies that Google reCAPTCHA has set on the demo version:
Name: IDE
Value: WqTUmlnmv_qXyi_DGNPLESKnRNrpgXoy1K-pAZtAkMbHI-311280441-8
Purpose: This cookie is set by the DoubleClick company (also owned by Google) to register and report a user’s actions on the website in dealing with advertisements. In this way, advertising effectiveness can be measured and appropriate optimization measures can be taken. IDE is stored in browsers under the domain doubleclick.net.
Expiration date: after one year
Name: 1P_JAR
Value: 2019-5-14-12
Purpose: This cookie collects website usage statistics and measures conversions. A conversion occurs, for example, when a user becomes a buyer. The cookie is also used to display relevant advertisements to users. Furthermore, the cookie can be used to prevent a user from seeing the same ad more than once.
Expiration date: after one month
Name: ANID
Wert: U7j1v3dZa3112804410xgZFmiqWppRWKOr
Purpose: We could not find out much information about this cookie. Google’s privacy policy mentions the cookie in connection with “advertising cookies” such as “DSID”, “FLC”, “AID”, “TAID”. ANID is stored under domain google.com.
Expiration date: after 9 months
Name: CONSENT
Value: YES+AT.com+20150628-20-0
Purpose: The cookie stores the status of a user’s consent to use various services from Google. CONSENT is also used for security purposes to verify users, prevent credential fraud and protect user data from unauthorized attacks.
Expiration date: after 19 years
Name: NID
Value: 0WmuWqy311280441zILzqV_nmt3sDXwPeM5Q
Purpose: NID is used by Google to customize ads to your Google search. With the help of the cookie, Google “remembers” your most entered search queries or your previous interaction with ads. This way you will always get customized ads. The cookie contains a unique ID to collect personal settings of the user for advertising purposes.
Expiration date: after 6 months
Name: DV
Value: gEAABBCjJMXcI0dSAAAANbqc311280441-4
Purpose: Once you have checked the “I am not a robot” box, this cookie will be set. The cookie is used by Google Analytics for personalized advertising. DV collects information in anonymous form and is further used to make user distinctions.
Expiration date: after 10 minutes
Note: This list cannot claim to be exhaustive, as experience has shown that Google also changes the choice of its cookies time and again.
How long and where is the data stored?
By inserting reCAPTCHA, data is transferred from you to the Google server. Where exactly this data is stored, Google does not make clear, even after repeated inquiries. Without having received confirmation from Google, it can be assumed that data such as mouse interaction, time spent on the website or language settings are stored on Google’s European or American servers. The IP address that your browser transmits to Google is generally not merged with other Google data from other Google services. However, if you are logged into your Google account while using the reCAPTCHA plug-in, the data will be merged. The deviating data protection provisions of the Google company apply to this.
How can I delete my data or prevent data storage?
If you do not want any data about you and your behavior to be transmitted to Google, you must log out of Google completely and delete all Google cookies before you visit our website or use the reCAPTCHA software. Basically, the data is automatically transmitted to Google as soon as you visit our site. To delete this data again, you have to contact Google support on Contact https://support.google.com/?hl=de&tid=311280441 .
Thus, by using our website, you consent to the automatic collection, processing and use of data by Google LLC and its agents.
Please note that when using this tool, data from you may also be stored and processed outside the EU. Most third countries (including the USA) are not considered secure under current European data protection law. So data may not simply be transferred to, stored in, and processed in insecure third countries unless there are appropriate safeguards (such as EU standard contractual clauses) between us and the non-European service provider.
You can learn a little more about reCAPTCHA on Google’s web developer page on https://developers.google.com/recaptcha/. Google does go into more detail here about the technical development of reCAPTCHA, but you will search in vain for precise information about data storage and privacy-related topics there as well. A good overview of Google’s basic use of data can be found in its in-house privacy policy on https://www.google.com/intl/de/policies/privacy/.
All texts are protected by copyright.
Source: Created with the Privacy Generator by AdSimple
Information about your right to object
acc. Article 21 of the EU GDPR
- You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you which is carried out on the basis of Article 6(1e) DSGVO (data processing in the public interest) and Article 6(1f) DSGVO (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Article 4 No. 4 DSGVO which we use for credit assessment or advertising purposes. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
- In individual cases, we process your personal data in order to conduct direct advertising. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such direct advertising.If you object to processing for the purpose of direct advertising, we will no longer process your personal data for these purposes.
The objection can be made form-free and should preferably be addressed to:
doctorseyes GmbH
Abbey St. 28
88416 Ochsenhausen
Tel: 07352939213
E-mail: info@doctorseyes.de