PRIVACY POLICY
Data protection has a particularly high priority for us, Modern Finance Nation GmbH (hereinafter referred to as “MFN” or “we”). Therefore, we operate our website in accordance with the applicable legal regulations regarding the protection of personal data and data security, in particular the provisions of the General Data Protection Regulation (EU) 2016/679 (GDPR), the German Federal Data Protection Act (BDSG) and the Telecommunications Digital Services Data Protection Act (TDDDG).
In this context, we would like to inform you about which data we collect, process and use during the use of our website, for which purpose and the legal basis on which this is carried out in each case and with whom we may share it.
Scope, Responsible Data Controller
This privacy policy applies to the web presence accessible at the domain
• www.m-f-n.com
(“website“).
Data controller within the meaning of the GDPR, other national data protection laws and other data protection provisions is:
Modern Finance Nation GmbH
Platz der Einheit 2
60327 Frankfurt am Main
Germany
Local court (Amtsgericht) of Frankfurt a.M., HRB 136713
Phone: +49 (0) 1743430301
E-Mail: info@m-f-n.com
General Information
Legal Basis for Processing
If you have consented to the data processing, we process your personal data on the basis of Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR respectively, if special categories of data are processed in accordance with Art. 9 para. 1 GDPR. In the event of express consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Art. 49 para. 1 lit. a GDPR. If you have consented to the storage of cookies or access to information on your end device (e.g., via device fingerprinting), data processing is also carried out on the basis of Section 25 para. 1 TDDDG. Consent can be revoked at any time. If your data is necessary for the performance of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Art. 6 para. 1 lit. b GDPR. Furthermore, we process your data if it is necessary to fulfil a legal obligation on the basis of Art. 6 para. 1 lit. c GDPR. Data processing may also be carried out on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. The relevant legal basis in each
individual case is explained in the following paragraphs of this privacy policy
Recipients of personal data
We work with various external parties in the course of our business activities. In some cases,
this requires the transfer of personal data to these external parties. We only pass on personal
data to external parties if this is necessary for the performance of a contract, if we are legally
obliged to do so (e.g., passing on data to tax authorities), if we have a legitimate interest in passing on the data in accordance with Art. 6 para. 1 lit. f GDPR, or if another legal basis permits the transfer of data. When using data processors (within the meaning of Art. 4 no. 8 GDPR), we only pass on our customers' personal data on the basis of a valid contract for
contract for commissioned processing in accordance with Art. 28 para. 3 GDPR. In the case of
joint processing, a contract for joint controllership in accordance with Art. 26 GDPR is
concluded.
Revocation of your consent to data processing
Many data processing operations are only permissible with your express consent. You can
revoke your consent at any time. The lawfulness of the data processing carried out up to the
point of revocation remains unaffected by the revocation.
Collection of General Data and Information on this Website
If you use our website for purely informational purposes (i.e. without actively providing us with data of your own accord, e.g. by making inquiries by e-mail or using contact forms or other data transmissions), we will only collect the data that is technically required to enable you to use our website and to ensure the stability and security of the IT systems we use. The legal basis for this is Art. 6 para. 1 lit. f GDPR. This general data and information are stored in the server’s log files. The following data are processed:
• browser type and version
• operating system used
• referrer URL
• the sub-websites that use an accessing system on our website can be controlled
• the date and time of access to the website
• an internet protocol address (IP address)
• the internet service provider of the user.
This data is analysed for statistical purposes only. No personal evaluation takes place. Rather, this information is technically required to deliver the content of our website correctly, to ensure the long-term functionality of our information technology systems and the technology of our website and to provide law enforcement authorities with the information necessary for law enforcement in the event of a cyber-attack.
The data stored in the server’s log files are stored separately from all personal data provided
by a data subject.
Data security
We take appropriate technical and organizational measures to ensure that the data collected in connection with the use of the services provided by us is protected against loss, incorrect modification or unauthorized access by third parties. Our security measures are continuously revised in line with technological developments and adapted accordingly.
For security reasons and to protect the transmission of confidential content, such as data that you send to us as site operator, our website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Cookies
In order to optimize the functionality and usability of the website, we use so-called cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.
The cookies we use are both session cookies and persistent cookies. Session cookies are automatically deleted when you end your session and close your browser. Persistent cookies are stored beyond the duration of your session until their storage time expires or until they are deleted. Most of the cookies used on our website are set by us (so-called "first-party cookies"). However, we also work with third-party providers (e.g. for analysis and marketing purposes) who also set cookies when you use the website (so-called "third-party cookies"). You can see from the following overview [LINK] whether the cookies are set by us or whether a third party is listed as the provider.
Cookies that are technically necessary to allow electronic communications or to provide certain functions you wish to use are processed by us pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in ensuring and optimizing the functionality and usability of the website. If other cookies (such as those used to analyse your surfing behaviour) are also stored, they will be treated separately in this privacy policy.
We will inform you separately about all cookies by means of which personal data are processed and which are not technically necessary for the provision of the website (e.g. cookies set by third-party companies or cookies used for analysis purposes) within the scope of this privacy policy and only use these personal data with your prior consent (Art. 6 para. 1 lit. a GDPR or Section 25 para. 1 TDDDG).
You can change your cookie settings taken when first visiting the website at any time by clicking on the “Cookie Settings” icon that you find on the bottom right corner of the window.
You can also configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or always reject them, or automatically delete cookies when closing your browser. You can also individually administer the cookies of many companies and functions that are used for advertising. Use the relevant user tools, which can be found at https://www.aboutads.info/choices or http://www.youronlinechoices.com/uk/your-ad- choices. Disabling cookies may limit the functionality of this website. In addition, most browsers offer a so-called “Do-not-track function”, with which you can state that you do not wish to be “tracked” by websites. If this function is activated, the respective browser informs advertising networks, websites, and applications that you do not want to be tracked for the purpose of behavioural advertising.
Subscription to our Newsletter
We inform our customers and business partners at regular intervals by means of a newsletter about offers and news from us. You can subscribe to our newsletter on this website. If you wish to do so, we require that you provide us with your email address. The processing of this data solely serves the purpose of the orderly delivery of the newsletter. Legal basis for this is Art. 6 para. 1 lit. a GDPR or Section 25 para. 1 TDDDG.
For the subscription, we use the so-called double opt-in procedure. This means that a confirmation email will be sent to the email address provided by you for the delivery of the newsletter. In this confirmation email, we ask you to confirm the subscription to our newsletter. If you do confirm by clicking on the link provided in the confirmation email, we will save your email address and the other information you might have provided us with, until you unsubscribe from the newsletter. When you click on the link in the confirmation email, we also store the IP address from which access is made and the time of access to prevent possible misuse.
The personal data collected as part of the newsletter service is not passed on to third parties. You can cancel the subscription to our newsletter with effect for the future at any time. To withdraw your consent to the subscription you can click on the corresponding link provided in every newsletter. You can also unsubscribe from the newsletter at any time by sending an email to the email address mentioned at the beginning of this privacy policy.
Email marketing via Brevo (Sendinblue)
Brevo (email marketing and CRM)
We send our marketing campaigns (in particular our “Dreambooster” communications) and manage our customer contacts via the “Brevo” platform operated by Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.
Purposes of processing
The data you provide to us (e.g. via Framer forms on our website) is processed for marketing communications, customer support, and statistical analysis of user behavior in our email campaigns and on our website. This enables us to better tailor our offers (such as Dreambooster) to your needs.
Legal basis
Processing is based on your consent (Art. 6(1)(a) GDPR), which we obtain using a double opt-in procedure, as well as the performance of (pre-)contractual obligations in the B2B context (Art. 6(1)(b) GDPR).
Data Processing Agreement (DPA)
We have concluded a Data Processing Agreement (DPA) with Brevo, under which the provider undertakes to process the personal data of our users only on our documented instructions and in compliance with applicable EU data protection standards. The applicable Brevo DPA can be found here: https://www.brevo.com/legal/termsofuse/#appendix3.
Third-party access (marketing agency)
As part of our campaign management, our contracted marketing agency is granted access to the data stored in Brevo. This access is strictly limited to the permissions necessary for planning, executing, and analyzing campaigns and is carried out in compliance with applicable data protection requirements.
Newsletter Tracking
Our newsletters contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in emails that are sent in HTML format to enable log file recording and log file analysis. This enables a statistical evaluation of the success or failure of online marketing campaigns to be carried out. Based on the embedded tracking pixel, MFN can recognize whether and when an email was opened by you and which links in the email were clicked by
you. Such personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by us in order to optimize the sending of the newsletter and to adapt the content of future newsletters even better to the interests of the person concerned. This personal data will not be passed on to third parties. Legal basis for this is Article 6 para. 1lit. a and lit f. GDPR.
You are entitled at any time to withdraw your consent relating to this by sending an email to
info@m-f-n.com. After you withdraw your consent, your personal data will be deleted. If you
unsubscribe from the newsletter, MFN automatically interprets this as withdrawal of your
consent and will also delete your data.
Contact via the Website
You can contact us via the contact form provided on our website. The data you will have to provide us with are your name, your email address and the message with your contact request. This personal data is processed for the purpose of responding and handling your contact request. Legal basis for this is Art. 6 para. 1 lit. b GDPR. This personal data is not passed on to third parties.
Retention period
We only store your personal data for as long as it is necessary for the fulfilment of the purpose of its collection. The criterion for the duration of the storage of personal data is the respective statutory retention period. After that, the corresponding data will be routinely deleted, provided that we are not required by applicable statutory provisions to store it for a longer period (e.g. tax regulations).
Automated Decision Making
We do not use automatic decision-making or profiling.
Website Builder System
Framer
We use Framer's website builder to create our website. This service is provided by Framer B.V., Rozengracht 207B, 1016 LZ Amsterdam, Netherlands.
Framer allows us to design our website on a blank canvas, add animations and interactions, and optimize it with a CMS. Framer enables us to create a professional website that is both user-friendly and visually appealing without any programming knowledge. We can choose from a variety of design templates and web apps and customize our website for different languages and regions to accommodate our international visitors.
Framer may use cookies to track activity on our website and store certain information. These cookies help us operate the service, store preferences, and keep our website secure. The legal basis for cookies that are not technically necessary is consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. Consent can be revoked at any time.
The service is also technically necessary to display our website. The legal basis for processing is therefore Art. 6 para. 2 lit. f GDPR. We have a legitimate interest in the presentation and functionality of our website.
As Framer is a company based in the Netherlands, data processing takes place within the
European Union.
Further information on data processing by Framer :
https://www.framer.com/legal/privacy-statement/
Social Media presences
In order to provide information about us and communicate with users, we operate accounts on social networks. These can be accounts belonging to our company, individual divisions, and media brands, as well as the pages of our corporate influencers.
Various user data may be processed by the operators of social networks outside the European Union, particularly in the USA. This data may include, in particular, inventory data (e.g., names, addresses), contact data (e.g., email, telephone numbers), content data (e.g.,entries in online forms), usage data (e.g., websites visited, interest in content, access times),and meta/communication data (e.g., device information, IP addresses).
The operators of social networks generally also process user data for market research and advertising purposes. The usage behaviour and interests of users stored in cookies on their computers can be used by operators to display interest-based advertising within and outside the networks. For a detailed description of data processing and the rights of data subjects, we therefore refer you to the privacy policies of the respective networks.
We process data in connection with the operation of our social media presences on the basis of our legitimate economic interest pursuant to Art. 6 para. 1 lt. f GDPR for the efficient processing of contact requests, queries, and communication with you, for the needs-based design of our offers, for product information, and for customer care.
Pages can be operated on the following social networks:
Instagram: Social network; Service provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA (parent company: Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are located in the EU, Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland); website:
https://www.instagram.com; privacy policy:
https://instagram.com/about/legal/privacy.Facebook: Social network; service provider: Meta Platforms, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are located in the EU, Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. We are jointly responsible with Facebook Ireland Ltd. for collecting data from visitors to our Facebook Pages. Facebook and we are each independently responsible for the further processing of the
data. This data may include content data (e.g., entries in online forms), usage data (e.g.interest in content, access times), and meta/communication data (e.g., device information, IP addresses). Facebook also processes this information in order to provide it to us by way of analysis via the so-called “Page Insights.” This gives us insights into how people interact with our pages and what content is interesting. To this end, we have entered into a data protection agreement with Facebook in which Facebook specifies the security measures it uses to protect this data and that it complies with the rights of data subjects (e.g., information, deletion). You can access the agreement here: https://www.facebook.com/legal/terms/page_controller_addendum. Further information can be found in the “Information on Page Insights”: https://www.facebook.com/legal/terms/information_about_page_insights_data; Website: https://www.facebook.com; Privacy policy:
https://www.facebook.com/about/privacy.LinkedIn: Social network; Service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; Website: https://www.linkedin.com; Privacy policy: https://www.linkedin.com/legal/privacy-policy; Opt-out option: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
X (formerly Twitter): Social network; Service provider: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland, parent company: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA; Privacy policy: https://twitter.com/privacy, (settings for personalization and data:
https://twitter.com/personalization).Xing: Social network; Service provider: XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany; Website: https://www.xing.de; Privacy policy:
https://privacy.xing.com/de/datenschutzerklaerung.TikTok: Social network; Service provider: TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland, and TikTok Information Technologies UK Limited, Kaleidoscope, 4 Lindsey Street, London, United Kingdom, EC1A 9HP; Website: https://www.tiktok.com; Privacy policy: https://www.tiktok.com/de/privacy-policy.
YouTube: Social network and video platform; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://www.youtube.com/; Privacy policy: https://policies.google.com/privacy.
privacy policies of these providers. There you will also find further
Social Media Plugins
Our website may also use plugins from social networks. We may use plugins from the following providers: Facebook, X (formerly Twitter), XING, LinkedIn, Instagram, WhatsApp, TikTok.
We do not use direct plugins from social networks on our website, but instead use a data protection-friendly alternative in which the social media buttons are only integrated as links to the pages of the external service providers. With the help of this solution, you can decide for yourself whether and when data is transmitted to the operators of the respective social networks. When you visit our website, no data is automatically transmitted to the above- mentioned social networks. Only when you actively click on the respective button will you be redirected to the social network's website and your browser will establish a connection to the servers of the respective social network. Your data may then be processed by the operator.
Further information on the purpose and scope of data processing by the plugin provider can be found in the respective privacy policies of these providers. There you will also find further information on your rights in this regard and setting options for protecting your privacy.
privacy policies of these providers. There you will also find further
Third-party Tools
In order to provide and continuously improve our services, we rely on the services of the following third-party providers, through which personal data may also be processed. We have selected these third-party providers carefully and in accordance with the provisions of applicable data protection legislation.
This website incorporates features of the Instagram service. These features are provided by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.
When the social media element is active, a direct connection is established between your device and the Instagram server. Instagram thereby receives information about your visit to this website.
If you are logged into your Instagram account, you can link the content of this website to your Instagram profile by clicking on the Instagram button. This allows Instagram to associate your visit to this website with your user account. We would like to point out that, as the operator of the website, we have no knowledge of the content of the data transmitted or its use by Instagram.
The use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG. Consent can be revoked at any time.
Insofar as personal data is collected on our website with the help of the tool described here and forwarded to Facebook or Instagram, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). Joint responsibility is limited exclusively to the collection of data and its transfer to Facebook or Instagram. The processing by Facebook or Instagram after the transfer is not part of the joint responsibility. The obligations incumbent upon us jointly have been set out in a joint processing agreement. The wording of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing data protection information when using the Facebook or Instagram tool and for the secure implementation of the tool on our website in accordance with data protection law. Facebook is responsible for the data security of Facebook or Instagram products. You can assert your rights as a data subject (e.g., requests for
information) regarding the data processed by Facebook or Instagram directly with Facebook.
If you assert your rights as a data subject with us, we are obliged to forward them to Facebook.
Data transfer to the USA is based on the standard contractual clauses (SCC) of the EU Commission.
Details can be found here:
https://www.facebook.com/legal/EU_data_transfer_addendum
https://privacycenter.instagram.com/policy/ and
https://de-de.facebook.com/help/566994660333381
Further information on this can be found in Instagram's privacy policy:
https://privacycenter.instagram.com/policy/
Meta Platforms, Inc. is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that is intended to ensure compliance with European data protection standards when processing data in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following
link: https://www.dataprivacyframework.gov/participant/4452.
Youtube
This website embeds videos from the YouTube website. The website is operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
When you visit one of these websites that incorporates YouTube, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to associate your surfing behaviour directly with your personal profile. You can prevent this by logging out of your YouTube account.
We use YouTube in extended data protection mode. According to YouTube, videos played in extended data protection mode are not used to personalize browsing on YouTube. Ads played in extended data protection mode are also not personalized. No cookies are set in extended data protection mode. Instead, however, so-called local storage elements are stored in the user's browser, which, similar to cookies, contain personal data and can be used
for recognition purposes. Details on extended data protection mode can be found here:
https://support.google.com/youtube/answer/171780.
After activating a YouTube video, further data processing operations may be triggered over which we have no control.
The use of YouTube is in the interest of an appealing presentation of our online offerings. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information on the user's terminal device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
Further information on data protection at YouTube can be found in their privacy policy at:
https://policies.google.com/privacy?hl=de.
The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when processing data in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780.
Google Fonts
This website uses Google Fonts, which are provided by Google, to ensure consistent font display. When you visit a page, your browser loads the required fonts into your browser cache to display text and fonts correctly.
For this purpose, the browser you are using must connect to Google's servers. This allows Google to know that this website has been accessed via your IP address. The use of Google Fonts is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the uniform display of the typeface on its website. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information on the user's terminal device (e.g., device fingerprinting) within the meaning of the TDDDG.
Consent can be revoked at any time
If your browser does not support Google Fonts, a standard font from your computer will be
used.
Further information on Google Fonts can be found at
https://developers.google.com/fonts/faq and in Google's privacy policy:
https://policies.google.com/privacy?hl=de.
Google is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement
between the European Union and the US that aims to ensure compliance with European data
protection standards when processing data in the US. Every company certified under the DPF
undertakes to comply with these data protection standards. Further information on this can
be obtained from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780
Google Maps
This website uses the Google Maps map service. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. This service allows us to embed map material on our website.
To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer. If Google Maps is activated, Google may use Google Fonts for the purpose of uniform font display. When you call up Google Maps, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.
The use of Google Maps is in the interest of an appealing presentation of our online offers and to make it easy to find the locations we have indicated on the website. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and Section 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information on the user's terminal device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission.
Details can be found here:
https://privacy.google.com/businesses/gdprcontrollerterms/ and
https://privacy.google.com/businesses/gdprcontrollerterms/sccs/.
For more information on how user data is handled, please refer to Google's privacy policy:
https://policies.google.com/privacy?hl=de
Google is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that is intended to ensure compliance with European data protection standards when processing data in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780.
Google Analytics
The website uses "Google Analytics 4" ("Google Analytics"), a web analytics service provided by Google LLC. The responsible entity for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). The legal basis for the use of Google Analytics and the data processing is Art. 6 para. 1 lit. a GDPR or Section 25 para. Para. 1 TDDDG (consent). We use Google Analytics to analyse the use of our website and to continuously improve individual functions and offers as
well as the user experience. Through the statistical evaluation of user behaviour, we can improve our offering and make it more interesting for you as a user. Google Analytics uses its own cookies for these purposes. If users click pages of our website, the following data may be processed:
Browser type/version,
operating system used,
referrer URL (the previously visited page),
host name of the accessing computer (IP address) and
time of the server request
This data is usually transferred to and processed on a Google server in the United States.
In order to oblige Google to process the transmitted data only in accordance with our instructions and in compliance with applicable data protection law, we have concluded a data processing agreement (DPA) with Google pursuant to Article 28 (3) GDPR.
Google is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that is intended to ensure compliance with European data protection standards when processing data in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780.
We would like to point out that we have extended the tracking code of Google Analytics with "anonymizeIp()" on this website to ensure anonymized collection of IP addresses (so-called IP masking). Only in exceptional cases will the full IP address be transferred to a Google server in the US and shortened there. On our behalf, Google will use this information to compile reports on the activities on our website for us and to provide other services related to website and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google. In the context of data sharing, we have selected the settings so that Google cannot access your data for the purpose of improving Google's
own products and services. You may refuse the use of cookies by selecting the appropriate settings on your browser, however, please note that if you do this you may not be able to use the full functionality of the website.
You can prevent the collection of data generated by the cookie and related to your use of the website (including IP address) to Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link (http://tools.google.com/dlpage/gaoptout?hl=de).
You can also revoke your consent in whole or in part at any time with effect for the future by
changing your cookie settings.
For more information on terms of use and privacy, please visit
www.google.com/analytics/terms/de.html or https://www.google.de/intl/de/policies/.
You can stop the use of the activities and information of your Google account under
"Advertising settings" on https://adssettings.google.com/anonymous?hl=de via checkbox.
Framer Analytics
We use Framer Analytics features on this website. This service is provided by Framer B.V., Rozengracht 207B, 1016 LZ Amsterdam, Netherlands. Framer Analytics offers specific features for monitoring user interactions with website prototypes. It enables the tracking of user actions such as clicks and page views, visualizes user paths through the prototype, and measures the time spent on different pages. This data helps to identify bottlenecks in user guidance and optimize the user experience. Framer Analytics does not collect any personal data and does not use cookies to track user activity.
The data is processed on the basis of Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to be able to continuously improve our website through analysis.
Further information:
https://www.framer.com/legal/privacy-statement/
Your rights
Insofar as we process personal data from you, you have the following rights pursuant to
GDPR :
1 rights of access
You can request confirmation from us as to whether we process personal data related to you.
If this is the case, you can request information from us about the following:
the purposes for which the personal data is processed;
the categories of personal data which are processed;
the recipients or categories of recipients to whom your personal data has been disclosed or will be disclosed;
the planned duration of the storage of your personal data or, if this specific information is not available, the criteria for determining the storage duration;
the existence of a right to correction or deletion of personal data relating to you, the right to limitation of processing by the responsible body or the right to refuse this processing;
the existence of a right of complaint to a supervisory authority;
all available information about the origin of the data if personal information is not provided by yourself but rather by third parties;
the existence of automated decision-making, including profiling, in accordance with Article 22 para. 1 and 4 GDPR.
You have the right to demand information as to whether or not your personal data is transferred to a third country or an international organization. In this context, you have the right to request the appropriate guarantees in accordance with Article 46 GDPR with regard to the transmission.
2 Right to Rectification
You have the right to request correction/completion within undue delay if your personal data
processed by us is incorrect or incomplete.
3 Right to Erasure (Right to be Forgotten)
Mandatory Deletion
You are entitled to request that we delete your personal data without undue delay if one of the following reasons apply:
Your personal data is no longer necessary for the purposes for which it was collected or processed otherwise.
If the processing was based on Article 6 para. 1lit. a GDPR or Art. 25 para. 1 TDDDG, and you withdraw your consent and there is no further legal basis for the processing.
You object to the processing in accordance with Article 21 para. 1 GDPR and there are no superseding, legitimate reasons for the processing, or you object to the use of your personal data for advertising purposes in accordance with Article 21 para. 2 GDPR.
Your personal data has been processed unlawfully.
The deletion of your personal data is required to fulfil a legal obligation.
Exceptions
The right of deletion does not apply to the extent that processing is necessary:
for exercising the right of freedom of expression and information;
for compliance with a legal obligation or performance of a task carried out in the public interest;
for the establishment, exercise or defence of legal claims
.4 Right to Restriction of Processing
Under the following conditions, you are entitled to request a restriction of the processing of
your personal data:
if you contest the correctness of your personal data for a period of time that allows us to verify the correctness;
the processing is unlawful and you reject the deletion of your personal data and, instead, demand the restriction of the use of the personal data;
we no longer require your personal data for the purposes of the processing, yet you still require this data in order to assert, exercise or defend against legal claims, or
if you have submitted an objection to the processing in accordance with Article 21 para. 1 GDPR and it has not yet been decided whether our legitimate reasons as the body responsible outweigh your reasons as the affected person.
If the processing of your personal data has been restricted, this data – with the exception of its storage – may only be processed with your consent or for the assertion, exercise or defence of legal claims, or to protect the rights of another natural or legal person or for reasons of substantial public interests of the Union or a Member State can be processed.
If the restriction of processing itself has been restricted as a consequence of the above-mentioned requirements, we will inform you before the restriction is lifted.
5 Right to Data Portability
You have the right to receive personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from us, where the processing is based on Article 6 para. 1 lit. a or b or Art. 9 para. 2 GDPR.
6 Right to Object
If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para.1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided that there are grounds for doing so that arise from your particular situation. Your personal data will then no longer be processed unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the assertion or defence of legal claims.
.7 Right to Withdraw Consent
To the extent the processing of your personal data is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR or Section 25 para.1 TDDDG, you may withdraw your consent at any time with effect for the future by sending an email to info@m-f-n.com.
.8 Right to file a Complaint with a Supervisory Authority
Regardless of other legal remedies you have the right to file a complaint with the responsible supervisory authority if you are of the opinion that processing of your personal data violates GDPR provisions.
Updates
This privacy policy is updated from time to time. Please see below for date of last update.
