1- Collection and storage of personal data as well as the type and purpose of their use

When you access our websites and contact us, the browser used on your device automatically sends information to our website’s server. This information is temporarily stored in a so-called log file. The following information is recorded without your intervention and stored until it is automatically deleted:

• IP address of the requesting computer
• Date and time of access
• Name and URL of the file accessed
• Website from which access is made (referrer URL)
• The browser used and, if applicable, the operating system of your computer as well as the name of your access provider

The data mentioned will be processed by us for the following purposes:

• Ensuring a smooth connection to the website
• Ensuring comfortable use of our website
• Evaluation of system security and stability
• Other administrative purposes

The legal basis for data processing is Art. 6 Paragraph 1 S. 1 lit. f GDPR. Our legitimate interest follows from the data collection purposes listed above. Under no circumstances do we use the data collected for the purpose of drawing conclusions about you personally. We do not use any analysis services beyond that.

2- Passing data

Your personal data will not be transferred to third parties for purposes other than those listed below. We will only pass on your personal data to third parties if:

• You have provided your personal data in accordance with Art. 6 Para. 1 sentence 1 lit. a GDPR
• There is an overriding legitimate interest in not disclosing your data in accordance with Art. 6 Para. 1 sentence 1 lit. f GDPR
• There is a legal obligation for the disclosure in accordance with Art. 6 Para. 1 Sentence 1 lit. c GDPR
• This is legally permissible and necessary for the processing of contractual relationships with you in accordance with Art. 6 Paragraph 1 Sentence 1 Letter b GDPR

3- Cookies

We only use so-called “session” cookies on our site. These are small files which your browser creates automatically and stores on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your device and do not contain viruses, Trojans or other malware. The cookie stores information that arises in connection with the specific end device used. However, this does not mean that we receive direct knowledge of your identity. These session cookies recognize that you have already visited individual pages on our website and are automatically deleted after you leave our site.

The data processed by cookies is necessary for the purposes mentioned to protect our legitimate interests and those of third parties in accordance with Article 6 Paragraph 1 Sentence 1 Letter f of the GDPR. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. Completely deactivating cookies may mean that you cannot use all functions of our website.

We use Google Ads. Google Ads sets a cookie on your computer if you came to our website via a Google ad. These cookies lose their validity after 30 days and are not used for personal identification. If the user visits certain pages on the Ads customer’s website and the cookie has not yet expired, Google and the customer can recognize that the user clicked on the ad and was redirected to this page. Every Ads customer receives a different cookie. Cookies cannot therefore be tracked via the websites of Ads customers. The information collected using the conversion cookie is used to create conversion statistics for Ads customers who have opted for conversion tracking. Ads customers learn the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.

If you do not want to take part in the tracking process, you can also refuse to set the cookie required for this – for example by using a browser setting that prevents the automatic setting of cookies. You can also deactivate cookies for conversion tracking by setting your browser to block cookies from the domain googleadservices.com. Google’s data protection policy on conversion tracking can be found here.

4- Fonts

External fonts from https://www.fontfabric.com/fonts/akrobat/ are also used on these websites. The integration takes place – like the rest of the website content – through a server request from our German hosting service provider. The use of web fonts is in the interest of a uniform and appealing presentation of our online offerings. This represents a legitimate interest within the meaning of Article 6 Paragraph 1 Letter f GDPR.

5- Integration of Google Maps

On this website we use Google Maps. This allows us to display interactive maps directly on the website and enables convenient use of the map function. However, the map will only be displayed if you expressly consent to this by clicking on the “Load map” button in accordance with Article 6 Paragraph 1 Sentence 1 Letter a GDPR. The processed data may primarily include IP addresses and location data. For more information, see Google Maps Platform and Google Privacy Policy.

6- Rights of those affected

You have the right:

• According to Art. 15 GDPR to request information about your personal data processed by us. In particular, about the purposes of processing, the categories of personal data, the categories of recipients, the planned storage period, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a right to complain, the origin of your data, and the existence of automated decision-making including profiling.
• According to Art. 16 GDPR, to request the immediate correction of incorrect or completion of your data.
• According to Art. 17 GDPR, to request the deletion of your personal data, unless processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims.
• According to Art. 18 GDPR, to request the restriction of processing if you dispute the accuracy of the data, the processing is unlawful and you refuse deletion, we no longer need the data, but you need it to assert, exercise or defend legal claims, or you have objected to the processing in accordance with Art. 21 GDPR.
• According to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another person responsible.
• In accordance with Art. 7 Para. 3 GDPR, to revoke your consent at any time. This means that we are no longer allowed to continue the data processing based on this consent in the future and you may complain to a supervisory authority in accordance with Art. 77 GDPR.

7- Right to object

If your personal data is processed on the basis of legitimate interests in accordance with Art. 6 Para. 1 Sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data at any time for reasons that arise from your particular situation or if the objection is directed against direct advertising. In the latter case, you have a general right to object, which we will implement without specifying a special situation. If you would like to exercise your right of withdrawal or objection, simply send an email to hello@remoteplatz.com.

8- Data Security

We use the common SSL (Secure Socket Layer) process on our website in conjunction with the highest level of encryption supported by your browser. This is usually 256-bit encryption. If your browser does not support 256-bit encryption, we will use 128-bit v3 technology instead. You can tell whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

9- Google user data: access, retention and deletion

When you connect a Google account to our services (for example for sign-in or integrations), we access the following Google user data:

• Profile information: Name, email address, profile picture
• Authentication data: Google account ID, OAuth access and refresh tokens
• Email integration (if enabled): Access to email messages, email metadata (sender, recipient, subject, timestamp)
• Calendar integration (if enabled): Calendar events, availability, appointment metadata
• Drive integration (if enabled): Access to Google Drive files that you explicitly share

We only process data that you explicitly authorize and that is necessary to provide the requested functionality. We use this data exclusively for:

• Authentication and secure sign-in
• Provision of selected Google integrations
• Improvement of user experience

Retention: Google user data is retained only for as long as necessary to provide the service. Access and refresh tokens are stored encrypted at rest and are deleted when you disconnect the Google integration or delete your account. Any cached Google user data is purged within 30 days of disconnection or account deletion.

Deletion: You can disconnect the Google integration at any time via your account settings or by emailing us at hello@remoteplatz.com. We will delete stored Google user data within 30 days. You can also revoke our access in your Google Account at https://myaccount.google.com/permissions; in that case, we delete associated tokens within 24 hours of detecting the revocation.

Sharing: We do not sell Google user data. We only share it with sub-processors as needed to provide the relevant feature and always subject to appropriate contractual and technical safeguards.