Data Protection Notice
Privacy Policy pursuant to Art. 13 GDPR
Name and address of the controller
The responsible party within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is:
Pyramid Computer GmbH
Bötzinger Straße 60
79111 Freiburg im Breisgau
Germany
Managing Director:
Peter Trosien
Phone: +49 761 4514 0
Email: sales(at)pyramid.de
The Data Protection Officer of the controller is:
We have appointed a Data Protection Officer.
WIEMER / ARNDT UG (haftungsbeschränkt)
Marienstrasse 25
10117 Berlin
Rebecca Wiemer
wiemer-arndt.de
Phone: 0049 -30 403649830
Email: kontakt@wiemer-arndt.de
General information on data processing
Legal basis for the processing of personal data
In accordance with Art. 13 GDPR, we inform you of the legal bases for our data processing. If the legal basis is not specifically mentioned in the privacy notice, the following applies:
The legal basis for obtaining consent is Art. 6 para. 1 lit. a in conjunction with Art. 7 GDPR. The legal basis for processing to fulfill our services and carry out contractual measures and to answer inquiries is Art. 6 para. 1 lit. b GDPR. The legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 lit. c GDPR. If the processing of your data is necessary to safeguard a legitimate interest of our company or a third party and your interests, fundamental rights and freedoms do not outweigh the former interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for processing. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.
Data deletion and storage period
We comply with the principles of data minimization pursuant to Art. 5 para. 1 lit. c GDPR and storage limitation pursuant to Art. 5 para. 1 lit. e GDPR. We store your personal data only as long as is necessary to achieve the purposes stated here or as provided for by the statutory retention periods. After the respective purpose has ceased to apply or after these retention periods have expired, the corresponding data will be deleted as quickly as possible.
External links
This website may contain links to third-party websites or to other websites under our responsibility. If you follow a link to one of the websites outside our responsibility, please note that these websites have their own privacy information. We assume no responsibility or liability for these external websites and their privacy notices. Therefore, before using these websites, please check whether you agree with their privacy policies.
External links can be identified either by being visually separated from the rest of the text or by being underlined. Your cursor will indicate external links when you hover over them. Only when you click on an external link will your personal data be transmitted to the destination of the link. The operator of the other website will receive in particular your IP address, the time at which you clicked the link, the page on which you clicked the link, and other information that can be found in the privacy notices of the respective provider.
Please also note that individual links may lead to a data transfer outside the European Economic Area. This may allow foreign authorities to access your data. You may not have any legal remedies against such data access. If you do not want your personal data to be transferred to the link destination or exposed to access by foreign authorities, please do not click on any links.
Rights of the data subject
As a data subject within the meaning of the GDPR, you have the possibility to assert various rights. The data subject rights arising from the GDPR are the right of access (Article 15), the right to rectification (Article 16), the right to erasure (Article 17), the right to restriction of processing (Article 18), the right to object (Article 21), the right to lodge a complaint with a supervisory authority, and the right to data portability (Article 20).
Right of withdrawal
Some data processing operations are only possible with your express consent. You may withdraw your consent at any time. The lawfulness of the data processing carried out until the withdrawal remains unaffected.
Right to object
If the processing is based on Art. 6 para. 1 lit. e or f GDPR, you as a data subject have the right to object at any time to the processing of personal data concerning you for reasons arising from your particular situation. This also applies to profiling based on these provisions within the meaning of Art. 4 No. 4 GDPR. If we cannot demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves the assertion, exercise, or defense of legal claims, we will cease processing your data following your objection.
If the processing of personal data serves direct marketing purposes, you also have the right to object at any time. The same applies to profiling insofar as it is associated with direct marketing. In this case, we will no longer process personal data once you object.
Right to lodge a complaint with a supervisory authority
If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement, without prejudice to any other administrative or judicial remedy.
Right to data portability
If your data is processed automatically on the basis of consent or for the performance of a contract, you have the right to receive this data in a structured, commonly used, and machine-readable format. You also have the right to request the transfer of this data to another controller, insofar as this is technically feasible.
Right of access, rectification, and erasure
You have the right to obtain information about your processed personal data, including the purpose of data processing, the categories, the recipients, and the duration of storage. If you have questions on this topic or on other topics related to personal data, you can of course contact us using the contact details provided in the imprint.
Right to restriction of processing
You may request the restriction of the processing of your personal data at any time. To do so, you must meet one of the following conditions:
-
You contest the accuracy of the personal data. For the duration of the verification of accuracy, you have the right to request restriction of processing.
-
If the processing is unlawful, you may request restriction of use instead of erasure.
-
If we no longer need your personal data for processing purposes, but you need it to assert, exercise, or defend legal claims, you may request restriction of processing instead of erasure.
-
If you have objected to processing pursuant to Art. 21 para. 1 GDPR, a balancing of interests will be carried out. Until this balancing has taken place, you have the right to request restriction of processing.
Restriction of processing means that personal data may only be processed – apart from storage – with your consent or for the assertion, exercise, or defense of legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.
Provision of the website (web host)
When you access our website, we automatically collect and store information in so-called server log files. This information is automatically transmitted by your browser to our server or to the server of our hosting company.
This includes:
-
IP address of the visitor’s device
-
Device used
-
Hostname of the accessing computer
-
Operating system of the visitor
-
Browser type and version
-
Name of the accessed file
-
Time of the server request
-
Amount of data
-
Information on whether the data retrieval was successful
This data is not merged with other data sources.
Instead of operating this website on our own server, we may also have it hosted on the server of an external service provider (hosting company), which we have named above in this case. The personal data collected by this website will then be stored on the servers of the hosting company. In addition to the data mentioned above, the web host also stores, for example, contact inquiries, contact data, names, website access data, meta and communication data, contract data, and other data generated via a website.
The legal basis for processing this data is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the technically error-free presentation and optimization of this website. If the website is accessed to enter into contract negotiations or to conclude a contract, Art. 6 para. 1 lit. b GDPR also serves as a legal basis. If we have commissioned a hosting company, a data processing agreement exists with this service provider.
Use of Local Storage Items, Session Storage Items, and Cookies
Our website uses Local Storage Items, Session Storage Items, and/or Cookies. Local Storage is a mechanism that allows data to be stored in the browser on your device. This data usually contains user preferences, such as the “day” or “night” mode of a website, and remains stored until you manually delete it. Session Storage is very similar to Local Storage, but the storage duration only lasts for the current session, i.e., until the current tab is closed. After that, the Session Storage Items are deleted from your device. Cookies are information that a web server stores on your device to be able to identify it. They are either stored temporarily for the duration of a session (session cookies) and deleted after your visit, or permanently (persistent cookies) on your device until you delete them yourself or your browser deletes them automatically.
These objects can also be stored on your device by third-party companies when you enter our site (third-party requests). This enables us as the operator and you as the visitor to use certain third-party services installed on this website. Examples include payment processing services or video displays.
These mechanisms have a variety of uses. They can improve the functionality of a website, control shopping cart functions, increase the security and convenience of website use, and carry out analyses of visitor flows and behavior. Depending on their function, they must be classified under data protection law. If they are necessary for the operation of the website and intended to provide certain functions (shopping cart function) or to optimize the website (e.g., cookies for measuring visitor behavior), they are used on the basis of Art. 6 para. 1 lit. f GDPR. As the website operator, we have a legitimate interest in storing Local Storage Items, Session Storage Items, and Cookies for the technically error-free and optimized provision of our services. In all other cases, Local Storage Items, Session Storage Items, and Cookies are only stored with your express consent (Art. 6 para. 1 lit. a GDPR).
If Local Storage Items, Session Storage, or Cookies are used by third-party companies or for analysis purposes, we will inform you separately in this privacy notice. Your required consent will be obtained and can be withdrawn at any time.
Use of external services
External services are used on our website. External services are services provided by third parties that are used on our website. This may be done for various reasons, for example, to embed videos or to secure the website. When using these services, personal data is also passed on to the respective providers. If we do not have a legitimate interest in using these services, we will obtain your revocable consent as a visitor to our website before using them (Art. 6 para. 1 lit. a GDPR).
Analytics
To analyze user behavior, we process personal data of website visitors. By evaluating the collected data, we are able to compile information about the use of individual components of our website. This allows us to improve the user-friendliness of our website. The analysis tools used may, for example, create user profiles for targeted or interest-based advertising messages, recognize website visitors on their next visit, measure their click/scroll behavior, their downloads, create heat maps, recognize page views, measure visit duration or bounce rates, and trace the origin of website visitors (city, country, referring page). With the help of the analysis tools, our market research and marketing activities can be improved.
Processing only takes place if you have given your consent to this data processing (via our consent banner on the website). The legal basis for this processing is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, data processing as described above does not take place. If you withdraw your consent (e.g., via the consent banner or other options provided on this website), we will stop this data processing. The lawfulness of processing carried out until the withdrawal remains unaffected.
etracker
We use the etracker service on our website. The provider of this service is etracker GmbH, Erste Brunnenstraße 1, 20459 Hamburg, Germany.
Further information can be found in the provider’s privacy policy at the following URL:
https://www.etracker.com/datenschutzerklaerung/
The service stores the following data in the local or session storage of the browser:
| Name | Storage duration | Type | Purpose |
|---|---|---|---|
| et_cssSelectors | Session | 1st-Party Session Storage | Stored by etracker on the local device. |
| et_scroll_depth | Session | 1st-Party Session Storage | Used for data collection to measure scroll depth. |
| et_tagManagerEntries | Session | 1st-Party Session Storage | Used as a cache for configured tag manager entries. |
Consent Management
To comply with data protection requirements, we use a consent management tool on our website. With this tool, we obtain the necessary consents for setting cookies or using external services. The consents are stored.
Processing is necessary to fulfill a legal obligation to which the controller (website operator) is subject. The legal basis is Art. 6 para. 1 lit. c GDPR.
Borlabs Cookie
We use the Borlabs Cookie service on our website. The provider of this service is Borlabs – Benjamin A. Bornstein, Rübenkamp 32, 22305 Hamburg, Germany.
As this service is hosted locally on the web server, no data is transmitted to third parties.
The service sets the following cookies on our website:
| Name | Storage duration | Type | Purpose |
|---|---|---|---|
| borlabs-cookie | 182 days | 1st-Party Cookie | Stores the settings selected by visitors in the Borlabs Cookie box. |
Content Delivery Network (CDN)
We use a Content Delivery Network (CDN) to optimize the performance and availability of our website. For this purpose, your IP address and the information about when you visited our website are processed by the service provider. All further information on data processing by this provider can be found in their privacy policy.
We base this processing on a legitimate interest (Art. 6 para. 1 lit. f GDPR).
Our legitimate interest in using a CDN is to be able to present our website as quickly, securely, and reliably as possible.
Google Static
We use the Google Static service on our website. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The use of the service may result in data being transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider’s privacy policy at:
https://business.safety.google/privacy
Display optimization
We use tools that serve to optimize the presentation of our website. These tools help, among other things, to display the website in other languages or in a more accessible way.
Processing only takes place if you have given your consent (via our consent banner). The legal basis is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, the data processing described above does not take place. If you withdraw your consent, we will stop this data processing. The lawfulness of processing carried out until the withdrawal remains unaffected.
Uncode
We use the Uncode service on our website. The provider is Uncode, 310 W 14th North St Ste 21, New York, New York, 10010, USA.
As this service is hosted locally on the web server, no data is transmitted to third parties.
The service sets the following cookies on our website:
| Name | Storage duration | Type | Purpose |
|---|---|---|---|
| uncodeAI.css | Session | 1st-Party Cookie | Contains runtime information about viewport and screen resolution to calculate adaptive images. |
| uncodeAI.images | Session | 1st-Party Cookie | Contains runtime information about viewport and screen resolution to calculate adaptive images. |
| uncodeAI.screen | Session | 1st-Party Cookie | Contains runtime information about viewport and screen resolution to calculate adaptive images. |
WPML
We use the WPML service on our website. The provider is OnTheGoSystems Ltd., 22/F 3 Lockhart Road, Wanchai, Hong Kong, China.
As this service is hosted locally on the web server, no data is transmitted to third parties.
We base this processing on a legitimate interest (Art. 6 para. 1 lit. f GDPR).
This application is required to ensure the full functionality of the website. It is a language tool that is considered essential.
The service sets the following cookies:
| Name | Storage duration | Type | Purpose |
|---|---|---|---|
| wp-wpml_current_language | Session | 1st-Party Cookie | Used to track the user’s language preference. |
Data protection software
To better comply with data protection requirements, we use appropriate software. This software supports us in complying with data protection regulations.
Processing only takes place if you have given your consent (via our consent banner). The legal basis is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, the data processing described above does not take place. If you withdraw your consent, we will stop this data processing. The lawfulness of processing carried out until the withdrawal remains unaffected.
Map service
We use a map service on this website. In order to use and display the map, it must be loaded from the provider’s server. This involves transmitting your IP address to the provider’s server. Depending on the provider, cookies and other technologies, including fonts, may be loaded. Further details can be found in the provider’s privacy policy.
Processing only takes place if you have given your consent (via our consent banner). The legal basis is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, the data processing described above does not take place. If you withdraw your consent, we will stop this data processing. The lawfulness of processing carried out until the withdrawal remains unaffected.
OpenStreetMap
We use the OpenStreetMap service on our website. The provider is OpenStreetMap Foundation, St John’s Innovation Centre, Cowley Road, Cambridge, CB4 0WS, United Kingdom.
The use of the service may result in data being transferred to a third country (United Kingdom). The European Commission has confirmed an adequate level of data protection for this country by adequacy decision.
Further information can be found in the provider’s privacy policy at:
https://wiki.osmfoundation.org/wiki/Privacy_Policy
Interface software
Business processes run more cost-effectively, faster, and with fewer errors when they are automated via software interfaces. This allows them to be efficiently integrated into business processes via the company website or social networks. We use interface software on our website to link different applications and securely transfer personal data from one application to another.
Processing only takes place if you have given your consent (via our consent banner). The legal basis is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, the data processing described above does not take place. If you withdraw your consent, we will stop this data processing. The lawfulness of processing carried out until the withdrawal remains unaffected.
Google APIs
We use the Google APIs service on our website. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The use of the service may result in data being transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider’s privacy policy at:
https://business.safety.google/privacy
Software framework
Software frameworks facilitate interaction with a platform by providing a standardized interface. Frameworks are used to reduce development effort for recurring software requirements and to ensure code and function reusability. Some frameworks implement security features to prevent improper use of the website. Frameworks can increase functionality, accessibility, security, and performance with little effort. Other application areas can also be covered by software frameworks.
Processing only takes place if you have given your consent (via our consent banner). The legal basis is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, the data processing described above does not take place. If you withdraw your consent, we will stop this data processing. The lawfulness of processing carried out until the withdrawal remains unaffected.
PHP.net
We use the PHP.net service on our website. The provider is The PHP Group, 1400 Parkmoor Ave, Ste 100, San Jose, California, 95126, USA.
As this service is hosted locally on the web server, no data is transmitted to third parties.
We base this processing on a legitimate interest (Art. 6 para. 1 lit. f GDPR).
This application is required to ensure the full functionality of the website.
The service sets the following cookies:
| Name | Storage duration | Type | Purpose |
|---|---|---|---|
| PHPSESSID | Session | 1st-Party Cookie | Created by a PHP-based application to recognize the user. |
Video / Music service
Audio and video content is integrated on our website. These are retrieved from the server of our provider, the so-called audio or video platform. To play an audio or video, your device establishes a connection to the platform and transmits personal data to it, in particular the IP address, possible location data, and information about the user’s browser and device.
Processing only takes place if you have given your consent (via our consent banner). The legal basis is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, the data processing described above does not take place. If you withdraw your consent, we will stop this data processing. The lawfulness of processing carried out until the withdrawal remains unaffected.
YouTube
We use the YouTube service on our website. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The use of the service may result in data being transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider’s privacy policy at:
https://business.safety.google/privacy
The service stores the following data in the local or session storage of the browser:
| Name | Storage duration | Type | Purpose |
|---|---|---|---|
| yt-remote-cast-available | Session | 3rd-Party Session Storage, www.youtube-nocookie.com | Stored by YouTube on the local device. |
| yt-remote-cast-installed | Session | 3rd-Party Session Storage, www.youtube-nocookie.com | Used to enable tracking based on GPS location, estimate bandwidth, generate statistics, and monitor user preferences. |
| yt-remote-connected-devices | Persistent | 3rd-Party Local Storage, www.youtube-nocookie.com | Controls the behavior of the embedded YouTube video player. |
| yt-remote-device-id | Persistent | 3rd-Party Local Storage, www.youtube-nocookie.com | Stores user settings for embedded YouTube videos. |
| yt-remote-fast-check-period | Session | 3rd-Party Session Storage, www.youtube-nocookie.com | Regulates the behavior of the embedded YouTube video player. |
| yt-remote-session-app | Session | 3rd-Party Session Storage, www.youtube-nocookie.com | Controls the behavior of the embedded YouTube video player. |
| yt-remote-session-name | Session | 3rd-Party Session Storage, www.youtube-nocookie.com | Stores user preferences for the embedded YouTube video player. |
| yt.innertube::nextId | Persistent | 3rd-Party Local Storage, www.youtube-nocookie.com | Records a unique ID for statistics on watched videos. |
| yt.innertube::requests | Persistent | 3rd-Party Local Storage, www.youtube-nocookie.com | Records a unique ID for statistics on watched videos. |
| ytidb::LAST_RESULT_ENTRY_KEY | Persistent | 3rd-Party Local Storage, www.youtube-nocookie.com | Stores user preferences for the embedded video player. |
Webfonts
This site uses so-called web fonts for the uniform display of fonts, which are provided by an external provider and loaded by the browser when the website is accessed. The provider of the web font gains knowledge that our website was accessed via your IP address, as your browser establishes a direct connection to the provider.
Processing only takes place if you have given your consent (via our consent banner). The legal basis is consent (Art. 6 para. 1 lit. a GDPR). Without your consent, the data processing described above does not take place. If you withdraw your consent, we will stop this data processing. The lawfulness of processing carried out until the withdrawal remains unaffected.
Google Fonts
We use the Google Fonts service on our website. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The use of the service may result in data being transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider’s privacy policy at:
https://business.safety.google/privacy
Web security
We use tools on our website that protect against unauthorized access, spam, and other attacks. This increases the security of our website.
We base this processing on a legitimate interest (Art. 6 para. 1 lit. f GDPR).
Our legitimate interest is to be able to ensure the security of our website and to protect ourselves against unauthorized access, spam, and other attacks.
Google Content Security Policy
We use the Google Content Security Policy service on our website. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The use of the service may result in data being transferred to a third country (USA). The provider is certified under the EU-U.S. Data Privacy Framework and therefore offers an adequate level of data protection.
Further information can be found in the provider’s privacy policy at:
https://business.safety.google/privacy