Privacy Policy

1. General Information:

Name and address of the data controllerThe responsible entity in terms of the General Data Protection Regulation (GDPR) and other data protection regulations is:
authentic.network GmbH
Zwickauer Straße 145
D-09116 Chemnitz
Germany

Contact:
Phone: +49 371 40 08 450
Mail: hello@authentic.network

General information on data processing

Legal basis for the processing of personal data

In accordance with Art. 13 GDPR, we inform you about the legal bases of our data processing. If the legal basis is not specifically mentioned in the privacy policy, the following applies:The legal basis for obtaining consent is Art. 6 para. 1 lit. a in conjunction with Art. 7 GDPR. The legal basis for processing for the performance of our services and the execution of contractual measures as well as for responding to inquiries is Art. 6 para. 1 lit. b GDPR. The legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 lit. c GDPR. If the processing of your data is necessary to protect a legitimate interest of our company or a third party, and if the interests, fundamental rights, and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for processing. If the processing of personal data is necessary to protect the vital interests of the data subject or another natural person, Art. 6 para. 1 lit. d GDPR serves as the legal basis.

Data deletion and storage duration

We adhere to the principles of data minimization in accordance with Art. 5 para. 1 lit. c GDPR and storage limitation in accordance with Art. 5 para. 1 lit. e GDPR. We only store your personal data for as long as is necessary to achieve the purposes mentioned here or as required by the legislator for storage periods. After the respective purpose has ceased to apply or after these retention periods have expired, the corresponding data will be deleted as soon as possible.

External links

This website may contain links to third-party websites or other websites under our responsibility. If you follow a link to one of the websites outside our responsibility, please note that these websites have their own privacy information. We do not assume any responsibility or liability for these external websites and their privacy policies. Therefore, before using these websites, please check whether you agree with the privacy policies there.You can recognize external links either by their slightly different color from the rest of the text or by being underlined. Your cursor will indicate external links when you hover over such a link. Only when you click on an external link will your personal data be transferred to the destination of the link. The operator of the other website will receive your IP address, the time at which you clicked on the link, the page on which you clicked on the link, and further information that you can find in the privacy policies of the respective provider.Please also note that individual links may lead to data transmission outside the European Economic Area. This could allow foreign authorities to access your data. You may not have any legal remedies against these data accesses. If you do not want your personal data to be transferred to the link destination or exposed to the access of foreign authorities, please do not click on any links.

Rights of the data subject

As a data subject within the meaning of the GDPR, you have the opportunity to assert various rights. The data subject rights arising from the GDPR are the right to information (Article 15), the right to rectification (Article 16), the right to erasure (Article 17), the right to restriction of processing (Article 18), the right to object (Article 21), the right to lodge a complaint with a supervisory authority, and the right to data portability (Article 20).

Right of withdrawal:

Some data processing can only be carried out with your express consent. You have the option to revoke your consent at any time. However, the lawfulness of the data processing up to the revocation is not affected by this.

Right to object:

If the processing is based on Art. 6 para. 1 lit. e or f GDPR, you as the data subject have the right to object to the processing of your personal data at any time for reasons arising from your particular situation. This right also applies to profiling based on these provisions within the meaning of Art. 4 No. 4 GDPR. If we cannot demonstrate a legitimate interest for the processing that outweighs your interests, rights, and freedoms, or if the processing serves the assertion, exercise, or defense of legal claims, we will refrain from processing your data after you have objected.If the processing of personal data is for the purpose of direct marketing, you also have the right to object at any time. The same applies to profiling that is related to direct marketing. Here too, we will no longer process personal data once you have objected.Right to lodge a complaint with a supervisory authority:If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority, without prejudice to any other administrative or judicial remedy.

Right to data portability:

If your data is processed automatically on the basis of consent or for the performance of a contract, you have the right to receive these data in a structured, commonly used, and machine-readable format. You also have the right to request the transfer and provision of data to another controller, provided that this is technically feasible.

Right to information, rectification, and erasure:

You have the right to information about your processed personal data regarding the purpose of data processing, the categories, the recipients, and the duration of storage. If you have any questions on this topic or any other topics regarding personal data, you can of course contact us using the contact options provided in the imprint.

Right to restriction of processing:

You can request the restriction of the processing of your personal data at any time. To do this, you must meet one of the following conditions:

- You dispute the accuracy of the personal data. For the duration of the verification of the accuracy, you have the right to request a restriction of processing.

- If processing is unlawful, you can alternatively request the restriction of the use of the data instead of deletion.

- If we no longer need your personal data for the purposes of processing, but you need the data to assert, exercise, or defend legal claims, you can alternatively request the restriction of processing instead of deletion.

- If you object to the processing in accordance with Art. 21 para. 1 GDPR, a balance will be struck between your interests and ours. Until this balance has been struck, you have the right to request the restriction of processing. A restriction of processing means that personal data, apart from storage, may only be processed with your consent or for the assertion, exercise, or defense of legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

Provision of the website (web hosting)

Our website is hosted by:

Amazon.com Inc.
10 Terry Ave N,
Seattle 98109, WAUSA
The server location is Ireland.

When you access our website, we automatically collect and store information in so-called server log files. Your browser automatically transmits this information to our server or to the server of our hosting company.

These are:
Device used
Hostname of the accessing computer
Operating system of the visitor
Browser type and version
Name of the accessed file
Time of the server request
Amount of data
Information whether the retrieval of the data was successful

These data are not merged with other data sources.

Instead of operating this website on our own server, we can also have it operated on the server of an external service provider (hosting company). The personal data collected by this website will then be stored on the servers of the hosting company. In addition to the data mentioned above, the web hoster also stores for us, for example, contact requests, contact details, names, website access data, meta and communication data, contract data, and other data generated via a website.

The legal basis for processing this data is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the technically flawless presentation and optimization of this website. If the website is accessed to enter into contract negotiations with us or to conclude a contract, another legal basis (Art. 6 para. 1 lit. b GDPR) applies. In the event that we have commissioned a hosting company, there is a contract for order processing with this service provider.

Use of Local Storage Items, Session Storage Items, and Cookies

Our website utilizes Local Storage Items, Session Storage Items, and/or Cookies. Local Storage is a mechanism that allows data storage within the browser on your device. These data usually include user preferences, such as the "day" or "night" mode of a website, and remain until you manually delete them. Session Storage is very similar to Local Storage, except that the storage duration lasts only during the current session, meaning until you close the current tab. After that, the Session Storage Items are deleted from your device. Cookies, on the other hand, are pieces of information deposited by a web server (server providing web content) on your device to identify it. They are either temporary for the duration of a session (session cookies), deleted after you visit a website, or permanent (persistent cookies), stored on your device until you delete them manually or they are automatically deleted by your web browser.

These objects can also be stored on your device by third-party companies when you enter our site (Third-Party Requests). This enables us as the operator and you as a visitor of this website to avail certain services from third parties installed on this website, such as processing payment services or displaying videos.

These mechanisms have various applications. They can enhance website functionality, control shopping cart functions, increase security and user comfort in website usage, as well as conduct analyses regarding visitor flows and behavior. Depending on the specific functions, they are classified under data protection regulations. If they are necessary for the operation of the website and provision of specific functions (shopping cart function) or serve to optimize the website (e.g., cookies for measuring visitor behavior), their use is based on Art. 6 para. 1 lit. f GDPR. As website operators, we have a legitimate interest in storing Local Storage Items, Session Storage Items, and Cookies for the technically flawless and optimized provision of our services. In all other cases, the storage of Local Storage Items, Session Storage Items, and Cookies only occurs with your explicit consent (Art. 6 para. 1 lit. a GDPR).

If Local Storage Items, Session Storage, or Cookies are used by third-party companies or for analytical purposes, we will inform you separately within this privacy notice. Your required consent will be requested and can be revoked at any time.

Use of External Services

External services are employed on our website. External services are services provided by third-party providers that are used on our website. This may be done for various reasons, such as embedding videos or enhancing website security. When using these services, personal data is also transferred to the respective providers of these external services. If we do not have a legitimate interest in using these services, we obtain your revocable consent as a visitor to our website before their use (Art. 6 para. 1 lit. a GDPR).

Analytics

To analyze user behavior, we process personal data of website visitors. By evaluating the collected data, we are able to compile information about the usage of individual components of our website. This enables us to enhance the user-friendliness of our website. Through the use of analytics tools, for example, user profiles could be created to deliver more targeted or interest-based advertising messages, recognize our website visitors on their next visit, measure their click/scroll behavior, downloads, create heatmaps, detect page views, measure visit duration or bounce rates, and trace the origin of website visitors (city, country, referring site). The analysis tools help improve our market research and marketing activities.

Processing only occurs if you consent to this data processing (via our consent banner on the website). The legal basis for this processing is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, data processing does not occur in the manner described above. If you revoke your consent (e.g., via the consent banner or other provided options on this website), we will cease this data processing. The legality of processing carried out before the revocation remains unaffected.

Google Analytics

We use the service Google Analytics on our website. The provider of the service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
By using the service, data may be transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider's privacy policy at the following URL: https://policies.google.com/privacy.

The service uses the following cookies on our website:
Name
Speicherdauer
Typ
Zweck
_ga
400 Tage
1st-Party Cookie
Enthält eine zufallsgenerierte User-ID. Anhand dieser ID kann Google Analytics wiederkehrende User auf dieser Webseite wiedererkennen und dieDaten von früheren Besuchen zusammenführen.
_ga_2KJWKV3G8P
400 Tage
1st-Party Cookie
Sammelt Daten dazu, wie oft ein Benutzer eine Webseite besucht hat, sowie Daten für den ersten und letzten Besuch.
_gat_gtag_UA_171707555_4
1 Minute
1st-Party Cookie
Stellt sicher das Daten an Google Analytics nur einmal pro Minute übermittelt werden. Solange er gesetzt ist, werden bestimmte Datenübertragungen verhindert.
_gid
24 Stunden
1st-Party Cookie
Dieser Cookie ordnet einem User eine ID zu, damit der Webtracker die Aktionen des Nutzers unter diese ID zusammenfassen kann.

Content Delivery Network (CDN)

We utilize a Content Delivery Network (CDN) to optimize the performance and availability of our website. For this purpose, the service provider who provides this network processes your IP address and information about when you visited our website. All further information regarding the data processing by this service provider can be found in their privacy policy.
We base this processing on legitimate interest (Art. 6 para. 1 lit. f GDPR).
Our legitimate interest in employing a Content Delivery Network is to present our website as quickly, securely, and reliably as possible.

Amazon CloudFront

We use the service Amazon CloudFront on our website. The provider of the service is Amazon Web Services EMEA S.à r.l., 38 Avenue John F. Kennedy L-1855, Luxembourg.
By using the service, data may be transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider's privacy policy at the following URL: https://aws.amazon.com/de/privacy/.

CloudFlare

We use the service CloudFlare on our website. The provider of the service is Cloudflare Germany GmbH, Rosental 7, 80331 Munich, Germany.
By using the service, data may be transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider's privacy policy at the following URL: https://www.cloudflare.com/privacypolicy/.

Google APIs CDN

We use the service Google APIs CDN on our website. The provider of the service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
By using the service, data may be transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider's privacy policy at the following URL: https://policies.google.com/privacy.

Hosting

Hosting refers to the provision of webspace and the files located on it by a web host.
This involves the transmission and storage of personal data on the servers of the web host. In particular, the IP addresses, meta and communication data of users, as well as data about website access, are processed. When a website visitor accesses the site, a connection is established to the servers of the web host. This results in the processing of personal data of the website visitor.
We base this processing on legitimate interest (Art. 6 para. 1 lit. f GDPR).
Our legitimate interest is to be able to present and make our website available on the internet.

Webflow Hosting

We use the Webflow Hosting service on our website. The provider of the service is Webflow, Inc., 398 11th Street, 2nd Floor San Francisco, CA 94103, USA.
By using the service, data may be transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider's privacy policy at the following URL: https://webflow.com/legal/eu-privacy-policy.

Webfonts

This page uses webfonts provided by an external provider to ensure consistent font presentation, which are loaded by the browser when the website is accessed. The provider of the webfonts becomes aware that our website has been accessed from your IP address because your browser establishes a direct connection to the provider of the webfonts.
Processing only occurs if you consent to this data processing (via our consent banner on the website). The legal basis for this processing is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, data processing does not occur in the manner described above. If you revoke your consent (e.g., via the consent banner or other provided options on this website), we will cease this data processing. The legality of processing carried out before the revocation remains unaffected.

Google Fonts

We use the Google Fonts service on our website. The provider of the service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
By using the service, data may be transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider's privacy policy at the following URL: https://policies.google.com/privacy.

Does Authentic.Network GmbH transfer my data internationally outside the market of collection?

Authentic.Network GmbH may transfer personal data to countries outside of the country where such data is collected in the course of sharing information with parties as set out above. Whenever Authentic.Network GmbH transfers personal information, we will ensure that the information is transferred in accordance with this Privacy Notice and as permitted by the applicable laws on data protection.

How secure is my data?

Authentic.Network GmbH protects the security of your information during transmission by using Secure Sockets Layer (SSL) software, which encrypts information you input. It is important for you to take measures to protect against unauthorized access to your password and to your computers, devices, and applications.

Use of contact information:

If you fill out our online forms, your personal details (such as name, email address, areas of interest) will be used exclusively for the correspondence with you, for example to send you requested information or documents (such as offers, orders). Any other use is only for the purposes that you have expressly consented to in the respective form. E-mail addresses are not used to send unsolicited e-mails without your consent.

Further information and contacts:

In addition, you may invoke your rights to correction or deletion at any time, to restrict processing, to object to processing, and to data portability. Here you will find the option to contact us by email or letter hello@authentic.network. You also have the right to contact the data protection supervisory authority for complaints.

Revisions to this Privacy Notice

Authentic.Network GmbH may from time to time update this Privacy Notice. The date specified below indicates the last revision to this Privacy Notice. Authentic.Network GmbH, GDPR Compliance Statement and Privacy Notice, dated March 2024.