Privacy Policy

 

1. Who is responsible for data collection on this website?

 

The data processing on this website is carried out by the website operator. You can find their contact details in the section "Notice on the responsible entity" in this privacy policy.

How do we collect your data?
Your data is collected in two ways. First, when you provide it to us, for example, by entering information into a contact form.
Other data is collected automatically or with your consent when you visit the website. This includes technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter the website.

What do we use your data for?
Some of the data is collected to ensure the website is provided without errors. Other data may be used to analyze your user behavior. If contracts can be concluded or initiated via the website, the transmitted data will also be processed for contract offers, orders, or other business inquiries.

What rights do you have regarding your data?
You have the right to obtain information about the origin, recipient, and purpose of your stored personal data at any time, free of charge. You also have the right to request the correction or deletion of your data. If you have given consent for data processing, you can revoke this consent at any time with future effect. Additionally, you have the right, under certain circumstances, to request the restriction of processing your personal data. Furthermore, you have the right to file a complaint with the competent supervisory authority.

For these and any other questions regarding data protection, you can contact us at any time.

​

2. Hosting

 

We host the content of our website with the following provider: WIX
The provider is Wix.com Ltd., Yunitsman 5 St, Tel Aviv, Israel (hereinafter "WIX"). When you visit our website, WIX collects various log files, including your IP addresses. For details, please refer to WIX's privacy policy:
https://support.wix.com/de/search?term=welche%20Daten%20erfasst%20WIX%20von%20Besuchern%20meiner%20Webseite&previousPageType=1

To contact the Wix Support Team, please click here.
If you would like to contact Wix regarding GDPR or data protection inquiries, please email: privacy@wix.com.
If you need to contact Wix regarding the Digital Services Act (DSA), please send an email to: legal@wix.com.

Represented by the Board of Directors:
https://investors.wix.com/board-of-directors

Wix.com Ltd. is a company registered in Israel.
Company registration number in Israel: 513881177
VAT identification number: 513881177

WIX is a platform for creating websites.

​

3. General Information and Mandatory Disclosures

Data Protection

 

The operators of this website take the protection of your personal data very seriously. We handle your personal data confidentially and in accordance with legal data protection regulations as well as this privacy policy.

When you use this website, various personal data are collected. Personal data refers to data that can be used to personally identify you. This privacy policy explains what data we collect and how we use it. It also explains how and for what purpose this happens.

Please note that data transmission over the Internet (e.g., when communicating via email) may have security vulnerabilities. A complete protection of data against access by third parties is not possible.

Notice on the Responsible Entity

The responsible entity for data processing on this website PLR Business World is:

Bernadette Langhans
Böcklerallee 19a
27721 Ritterhude
Germany

Phone: +49 1520 7012815
Email: plrbusinessworld(at)gmail.com

The responsible entity is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).

Storage Duration

Unless a specific storage period is stated within this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you request deletion or withdraw your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods). In such cases, deletion occurs after these reasons cease to apply.

General Information on Legal Bases for Data Processing on this Website

If you have consented to data processing, we process your personal data based on Art. 6(1)(a) GDPR or Art. 9(2)(a) GDPR, if special categories of data according to Art. 9(1) GDPR are processed. If you have explicitly consented to the transfer of personal data to third countries, data processing is additionally based on Art. 49(1)(a) GDPR. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), data processing is additionally based on § 25(1) TTDSG. Consent can be revoked at any time.

If your data is required for contract fulfillment or pre-contractual measures, we process your data based on Art. 6(1)(b) GDPR. Furthermore, we process your data if it is necessary to fulfill a legal obligation based on Art. 6(1)(c) GDPR. Data processing may also occur based on our legitimate interest under Art. 6(1)(f) GDPR. The specific legal bases for each case are provided in the relevant sections of this privacy policy.

Recipients of Personal Data

In the course of our business activities, we cooperate with various external entities. In some cases, the transfer of personal data to these external parties is necessary. We only disclose personal data if it is required for contract fulfillment, if we are legally obligated to do so (e.g., providing data to tax authorities), if we have a legitimate interest in the transfer under Art. 6(1)(f) GDPR, or if another legal basis allows the data transfer.

When using processors, we only transfer personal data based on a valid data processing agreement. In the case of joint processing, a joint processing agreement is concluded.

Revocation of Your Consent to Data Processing

Many data processing operations are only possible with your explicit consent. You can revoke your consent at any time. The legality of data processing carried out before revocation remains unaffected by the revocation.

​​

Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)

IF DATA PROCESSING IS BASED ON ART. 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RELEVANT LEGAL BASIS FOR PROCESSING CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS OR THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION UNDER ART. 21(1) GDPR).

IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT TO SUCH PROCESSING AT ANY TIME; THIS ALSO APPLIES TO PROFILING IN CONNECTION WITH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT MARKETING PURPOSES (OBJECTION UNDER ART. 21(2) GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, workplace, or the place of the alleged infringement. The right to lodge a complaint exists without prejudice to other administrative or judicial remedies.

Right to Data Portability

You have the right to receive data that we process automatically based on your consent or in fulfillment of a contractin a commonly used, machine-readable format. If you request direct transfer of the data to another controller, this will only be done where technically feasible.

Right to Access, Rectification, and Erasure

Within the framework of applicable legal provisions, you have the right to request free information about your stored personal data, its origin, recipients, and purpose of processing at any time. You may also request the rectification or deletion of your data. For these requests or any other questions about personal data, you can contact us at any time.

Right to Restriction of Processing

You have the right to request the restriction of processing of your personal data. You may contact us at any time regarding this. The right to restriction of processing applies in the following cases:

• If you dispute the accuracy of your stored personal data, we usually need time to verify this. During the verification period, you have the right to request restriction of processing.

• If processing is unlawful, but you oppose the deletion of the data and instead request the restriction of its use.

• If we no longer need your personal data, but you require it to assert, exercise, or defend legal claims, you have the right to request the restriction of processing instead of deletion.

• If you have objected under Art. 21(1) GDPR, a balancing of interests must take place between your and our interests. Until it is determined whose interests prevail, you have the right to request the restriction of processing.

If processing has been restricted, your data may only be processed—apart from storage—with your consent, for the assertion, exercise, or defense of legal claims, to protect the rights of another natural or legal person, or for important public interest reasons of the European Union or a member state.

SSL/TLS Encryption

For security reasons and to protect the transmission of confidential content—such as orders or inquiries you send to us as the website operator—this site uses SSL/TLS encryption.
An encrypted connection is indicated by:

• The address bar of the browser changing from “http://” to “https://”, and

• The lock icon appearing in your browser’s address bar.

If SSL/TLS encryption is enabled, the data you transmit to us cannot be read by third parties.

Encrypted Payment Transactions on This Website

If, after concluding a paid contract, you are required to transmit your payment data (e.g., account number for direct debit), this data will be needed for payment processing.

Payment transactions via common payment methods (Visa/MasterCard, direct debit) are carried out exclusively over an encrypted SSL/TLS connection.
An encrypted connection is indicated by:

• The address bar of the browser changing from “http://” to “https://”, and

• The lock icon appearing in your browser’s address bar.

With encrypted communication, the payment data you transmit cannot be read by third parties.

Objection to Promotional Emails

We hereby object to the use of contact data published as part of the legal notice requirement for sending unsolicited advertising and informational materials. The website operators expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam emails.

​

4. Data Collection on This Website

Cookies

Our website uses so-called "cookies." Cookies are small data packets that do not cause any damage to your device. They are either temporarily stored for the duration of a session (session cookies) or permanently stored on your device (permanent cookies). Session cookies are automatically deleted after your visit ends. Permanent cookies remain stored on your device until you delete them yourself or they are automatically deleted by your web browser.

Cookies can either originate from us (first-party cookies) or from third-party companies (third-party cookies). Third-party cookies enable the integration of specific services from third-party providers within websites (e.g., cookies for processing payment services).

Cookies serve various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or the display of videos). Other cookies may be used to analyze user behavior or for advertising purposes.

Cookies necessary for carrying out electronic communication, providing specific functions you request (e.g., shopping cart function), or optimizing the website (e.g., cookies for measuring web audience) are stored based on Art. 6(1)(f) GDPR, unless another legal basis is stated. The website operator has a legitimate interest in storing necessary cookies to ensure the technically error-free and optimized provision of their services. If consent for storing cookies and similar recognition technologies has been requested, processing is carried out exclusively on the basis of this consent (Art. 6(1)(a) GDPR and § 25(1) TDDDG); consent can be revoked at any time.

You can configure your browser to inform you about the setting of cookies, allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.

You can find details about which cookies and services are used on this website in this privacy policy.

Consent with Usercentrics

This website uses the Usercentrics consent technology to obtain your consent for storing specific cookies on your device or using certain technologies and to document them in compliance with data protection laws. The provider of this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, website: https://usercentrics.com/de/ (hereinafter "Usercentrics").

When you enter our website, the following personal data is transferred to Usercentrics:

• Your consent(s) or the withdrawal of your consent(s)

• Your IP address

• Information about your browser

• Information about your device

• Time of your visit to the website

• Geolocation

Usercentrics also stores a cookie in your browser to assign the consents granted or their withdrawal. The collected data is stored until you request deletion, delete the Usercentrics cookie yourself, or the purpose for storing the data no longer applies. Mandatory legal retention periods remain unaffected.

The Usercentrics banner on this website was configured using eRecht24. You can recognize this by the appearance of the eRecht24 logo in the banner. To display the eRecht24 logo in the banner, a connection is established to the eRecht24 image server. In this process, the IP address is also transmitted but is stored only in anonymized form in the server logs. The image server of eRecht24 is located in Germany and hosted by a German provider. The banner itself is provided exclusively by Usercentrics.

The use of Usercentrics serves the purpose of obtaining legally required consents for the use of certain technologies. The legal basis for this is Art. 6(1)(c) GDPR.

Data Processing Agreement

We have signed a data processing agreement (DPA) with Usercentrics to use the above-mentioned service. This is a legally required agreement that ensures Usercentrics processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

Contact Form

If you submit inquiries to us via the contact form, your details from the inquiry form, including the contact details you provided, will be stored for processing the inquiry and for follow-up questions. We do not share this data without your consent.

Processing of this data is based on Art. 6(1)(b) GDPR, provided that your request is related to the performance of a contract or is necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interestin effectively handling inquiries (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if requested; consent can be revoked at any time.

The data you enter in the contact form remains with us until you request deletion, revoke your consent to storage, or the purpose for data storage ceases (e.g., after completing your request). Mandatory legal provisions—particularly retention periods—remain unaffected.

Inquiry via Email or Phone

If you contact us by email or phone, your inquiry, including all personal data resulting from it (e.g., name, request), will be stored and processed for the purpose of handling your request. We do not share this data without your consent.

Processing of this data is based on Art. 6(1)(b) GDPR, provided that your request is related to the performance of a contract or necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling inquiries (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if requested; consent can be revoked at any time.

The data sent to us via contact inquiries remains with us until you request deletion, revoke your consent to storage, or the purpose for data storage ceases (e.g., after completing your request). Mandatory legal provisions—particularly statutory retention periods—remain unaffected.

​

5. Analytics Tools and Advertising

 

Wix WebAnalytics This website uses the analytics services of WIX. Wix employs a number of subcontractors. The type of data that subcontractors can access is limited to what is necessary to perform the provided service. This page contains a current list of the names and locations of the subcontractors that Wix engages to process personal data of visitors and users of websites or services of Wix users ("users of users").

Wix Subcontractors Personal data of users of users processed via Wix services is initially processed by Wix.com Ltd. (Israel) and may then be transferred to other Wix companies for storage and, if necessary, for the provision of our services. Transfers to Wix companies are covered by an internal data processing agreement of Wix, which includes appropriate safeguards to ensure that cross-border transfers are conducted in compliance with applicable data protection laws such as the EU GDPR.

​

6. Newsletter

 

Newsletter Data If you would like to receive the newsletter offered on the website, we require an email address from you as well as information that allows us to verify that you are the owner of the provided email address and agree to receive the newsletter. No additional data is collected or only on a voluntary basis. We use newsletter service providers, which are described below, to manage our newsletters.

Mailchimp This website uses the services of Mailchimp to send newsletters. The provider is The Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA. Mailchimp is a service that helps organize and analyze the distribution of newsletters. When you enter data for the purpose of receiving the newsletter (e.g., email address), it is stored on Mailchimp's servers in the USA.

With the help of Mailchimp, we can analyze our newsletter campaigns. When you open an email sent with Mailchimp, a file contained in the email (a so-called web beacon) connects to Mailchimp's servers in the USA. This allows us to determine whether a newsletter message was opened and which links, if any, were clicked. Additionally, technical information is recorded (e.g., time of retrieval, IP address, browser type, and operating system). This information cannot be assigned to a specific newsletter recipient. It is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to tailor future newsletters more effectively to the interests of recipients.

If you do not want your data to be analyzed by Mailchimp, you must unsubscribe from the newsletter. We provide a corresponding link in every newsletter message.

Data processing is based on your consent (Art. 6(1)(a) GDPR). You can revoke your consent at any time by unsubscribing from the newsletter. The legality of the data processing already carried out remains unaffected by the revocation.

The data you provide for the purpose of receiving the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter, at which point it will be removed from the newsletter distribution list. Data stored by us for other purposes remains unaffected.

Data transfer to the USA is based on the EU Commission's Standard Contractual Clauses. Details can be found here: https://mailchimp.com/eu-us-data-transfer-statement/ and https://mailchimp.com/legal/data-processing-addendum/#Annex_C_-_Standard_Contractual_Clauses.

After unsubscribing from the newsletter distribution list, your email address may be stored in a blacklist by us or the newsletter service provider if necessary to prevent future mailings. Data from the blacklist is used only for this purpose and is not merged with other data. This serves both your interest and our interest in complying with legal requirements for sending newsletters (legitimate interest under Art. 6(1)(f) GDPR). The storage period of the blacklist is indefinite. You can object to the storage if your interests outweigh our legitimate interest.

For more details, please refer to Mailchimp’s privacy policy: https://mailchimp.com/legal/terms/.

The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF is committed to adhering to these data protection standards. More information can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/participant/7693.

Data Processing Agreement We have entered into a Data Processing Agreement (DPA) for the use of the aforementioned service. This is a data protection contract required by law, ensuring that the service provider processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.

​

7. Plugins and Tools

YouTube with Enhanced Privacy Mode

 

This website integrates videos from the YouTube platform. The operator of YouTube is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit a page on our website that includes a YouTube video, a connection to YouTube’s servers is established. In doing so, YouTube is informed about which of our pages you have visited. If you are logged into your YouTube account, YouTube can directly associate your browsing behavior with your personal profile. You can prevent this by logging out of your YouTube account.

We use YouTube in enhanced privacy mode. According to YouTube, videos played in enhanced privacy mode are not used to personalize browsing on YouTube. Additionally, ads shown in enhanced privacy mode are also not personalized. In this mode, no cookies are set. However, so-called local storage elements are stored in the user's browser, which function similarly to cookies and may contain personal data used for user recognition. Further details about YouTube’s enhanced privacy mode can be found here: https://support.google.com/youtube/answer/171780.

Please note that once a YouTube video is activated, additional data processing operations may be triggered, over which we have no control.

The use of YouTube is in the interest of providing an appealing presentation of our online offerings. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. If consent has been requested, processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TDDDG, as far as consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) in accordance with the TDDDG. Consent can be revoked at any time.

For more information on YouTube’s privacy policy, please visit: https://policies.google.com/privacy?hl=en.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States that aims to ensure compliance with European data protection standards for data processing in the U.S. Any company certified under the DPF commits to adhering to these data protection standards. Further details are available from the provider at: https://www.dataprivacyframework.gov/participant/5780.

​

8. eCommerce and Payment Providers

Processing of Customer and Contract Data

 

We collect, process, and use personal customer and contract data to establish, define the content of, and modify our contractual relationships. We collect, process, and use personal data about the use of this website (usage data) only to the extent necessary to enable the user to utilize the service or for billing purposes. The legal basis for this is Art. 6(1)(b) GDPR.

The collected customer data will be deleted after the order has been completed, the business relationship has ended, and any applicable legal retention periods have expired. Legal retention periods remain unaffected.

​

Data Transfer Upon Contract Conclusion for Online Shops, Merchants, and Shipping

When you order goods from us, we pass on your personal data to the transport company responsible for delivery as well as to the payment service provider handling the payment process. Only the data necessary for the respective service provider to fulfill their task is disclosed. The legal basis for this is Art. 6(1)(b) GDPR, which permits the processing of data for contract fulfillment or pre-contractual measures.

If you have given your explicit consent pursuant to Art. 6(1)(a) GDPR, we will pass on your email address to the transport company responsible for the delivery so that they can inform you about the shipping status of your order via email. You can revoke this consent at any time.

​

Data Transfer Upon Contract Conclusion for Services and Digital Content

We only transfer personal data to third parties if this is necessary for contract processing, such as to the financial institution responsible for payment processing.

No further data transfer will take place unless you have explicitly consented to it. Your data will not be disclosed to third parties without your explicit consent, such as for advertising purposes.

The legal basis for data processing is Art. 6(1)(b) GDPR, which permits the processing of data for contract fulfillment or pre-contractual measures.

​

Payment Services

We integrate payment services from third-party companies on our website. When you make a purchase, your payment data (e.g., name, payment amount, bank details, credit card number) is processed by the payment service provider for the purpose of payment processing. These transactions are subject to the contractual and privacy policies of the respective providers.

The use of payment service providers is based on Art. 6(1)(b) GDPR (contract processing) and in the interest of a smooth, convenient, and secure payment process (Art. 6(1)(f) GDPR). If certain actions require your consent, the legal basis for data processing is Art. 6(1)(a) GDPR; consents can be revoked at any time with future effect.

We use the following payment services/providers on this website:

​

PayPal

The provider of this payment service is PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg ("PayPal").
Data transfers to the USA are based on the European Commission’s Standard Contractual Clauses.
For details, see: https://www.paypal.com/de/webapps/mpp/ua/pocpsa-full.
For PayPal’s privacy policy, visit: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

​

Google Pay

The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google’s privacy policy can be found here: https://policies.google.com/privacy.

​

Mastercard

The provider of this payment service is Mastercard Europe SA, Chaussée de Tervuren 198A, B-1410 Waterloo, Belgium ("Mastercard").
Mastercard may transfer data to its parent company in the USA. Data transfers to the USA are based on Mastercard’s Binding Corporate Rules.
For details, see: https://www.mastercard.de/de-de/datenschutz.html and https://www.mastercard.us/content/dam/mccom/global/documents/mastercard-bcrs.pdf.

​

VISA

The provider of this payment service is Visa Europe Services Inc., London Branch, 1 Sheldon Square, London W2 6TT, United Kingdom ("VISA").
The United Kingdom is considered a secure third country in terms of data protection law. This means that the UK has a level of data protection equivalent to that of the European Union.

VISA may transfer data to its parent company in the USA. Data transfers to the USA are based on the European Commission’s Standard Contractual Clauses.
For details, see: https://www.visa.de/nutzungsbedingungen/visa-globale-datenschutzmitteilung/mitteilung-zu-zustandigkeitsfragen-fur-den-ewr.html.
For VISA’s privacy policy, visit: https://www.visa.de/nutzungsbedingungen/visa-privacy-center.html.

Wix GDPR Information on Customer Data

​

​

​

​

​

​

​