We attach great importance to data protection. The collection and processing of your personal data is carried out in compliance with the applicable data protection regulations, in particular the EU Data Protection Basic Regulation (GDPR). We collect and process your personal data in order to be able to offer you our website and our services. In accordance with Art. 13 GDPR, we describe in this declaration which data is used in which way and for which purpose and scope and which options and rights you have in connection with the use of your personal data.
1. Responsible party
Moqlabs UG (haftungsbeschränkt) is responsible for compliance with data protection on our website, represented by the managing director Dennis Hansen, Gneisenaustraße 16, 24105 Kiel. We have not nominated a data protection officer.
We are at your disposal for any questions regarding data protection law. For this you have the following contact possibilities:
Tel.: +49 176 32866480
2. Data collection on our website
When you access our website, information is automatically transmitted by your browser to the server of our website. This information is only stored briefly in a so-called log file and is automatically deleted.
This includes the following data:
- your IP adress
- date and time of the call
- name and URL of the file you called up
- website from which the call is made (referrer URL)
- information about the browser and operating system you are using
- name of access-providers.
This data is used for the purpose of ensuring a smooth connection and comfortable use of our website as well as for the evaluation of system security and stability.
The legal basis for data processing results from Art. 6 Para. 1 S. 1 lit. f GDPR, since we have a legitimate interest in collecting data for the aforementioned purposes. In addition, a legal basis also arises from Art. 6 para. 1 lit. b GDPR for the processing of data for the fulfilment of a contract or pre-contractual measures.
The data will not be used to draw conclusions about your person.
A web service of the company Cloudflare Inc., 101 Townsend St, 94107 San Francisco, USA, hereinafter referred to as Cloudflare, is used on our website. Cloudflare is used for the security of the website and to guarantee the functionality of our website. In this context, your browser may transmit personal data to Cloudflare. The legal basis for data processing is Art. 6 Para. 1 lit. f GDPR. We have a legitimate interest in ensuring that our website functions error-free and is additionally protected from external influences. The data will be deleted as soon as the purpose of its collection has been fulfilled.
The service has undertaken to comply with the European data protection directives and has also acceded to the Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt0000000GnZKAA0&status=Active
Further information on data protection at Cloudflare can be found here: https://www.cloudflare.com/security-policy/?utm_referrer=https://www.google.de/.
You can prevent the collection and processing of your data by Cloudflare by deactivating the execution of script code in your browser or by installing a script blocker in your browser (this can be found, for example, at www.noscript.net or www.ghostery.com).
c) Contact form/ Communication with E-Mail
On our page you will find a contact form. Herewith we would like to give our customers the possibility to contact us in an uncomplicated way. You can also contact us directly by e-mail. If you would like to use our contact form, you must enter your name and a valid e-mail address. If you send us an e-mail, we will at least receive your e-mail address. All other data provided is optional. The data is collected for the purpose of initiating or implementing contractual relationships in accordance with Art. 6 Para. 1 lit. b GDPR. Insofar as your inquiry is not directed towards the initiation or execution of a contract, we nevertheless have a justified interest in processing and answering your inquiry. In this respect, the use of personal data for this purpose is governed by Art. 6 para. 1 lit. f GDPR.
We use the data provided by you exclusively to process your enquiry. Insofar as your enquiry is directed towards the initiation or execution of business, we will delete your data in accordance with our internal deletion deadlines.
Insofar as your request relates to another purpose, we delete your data after processing, insofar as there is no other legal basis for data storage.
d) Processing of customer and contract data
When initiating business, concluding contracts and fulfilling contracts, we use your necessary personal data for this purpose in accordance with Art. 6 Para. 1 lit. b GDPR.
Data will only be transferred to third parties if and insofar as this is necessary for contractual fulfilment, e.g. if a company for production or transport services or a bank has been commissioned to process payments.
This personal data will be deleted after the statutory warranty periods have expired or after the statutory retention periods have expired.
You can register on our website and create a user account. For this it is necessary that you enter the data required in the registration. In the user account you can then view the profile data you have entered and stored as well as the project data you have entered (content data). The user account is not publicly accessible. If you delete your user account, all data will be deleted with the exception of data which we are obliged to store under commercial and tax law pursuant to Art. 6 Para. 1 lit. f GDPR.
With each registration, registration, order or other binding action, we store your IP address as well as day and time. This is done for your protection and in accordance with Art. 6 Para. 1 lit. f GDPR out of our legitimate interest to prove that a claim has arisen and to prevent acts of abuse or unauthorised use of our system.
In the user area, we also use the web service Cloudinary (Cloudinary Inc., 111 W Evelyn Ave Suite 206, Sunnyvale, California 94086) for the purpose of contract implementation in accordance with Art. 6 Para. 1 lit b GDPR. Cloudinary is a service for optimizing images in real time. For this purpose, your IP address and the shared content data are transmitted to Cloudinary as part of an order processing within the meaning of Art. 28 GDPR.
The service has committed itself to comply with the European data protection guidelines and has also joined the Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt0000000011jAAA&status=Active
e) Processing by payment service providers
In the case of services with costs, we process your personal data, in particular payment data (account, credit card and other bank data) on the basis of Art. 6 Para. 1 lit. b GDPR. This is done for the purpose of contract execution (payment processing/accounting). To the extent necessary, your payment data for the payment transaction and for billing will be transmitted to service providers (credit institutions, accounting service providers) or processed directly by them.
Your payment data will be stored for the duration of the contractual relationship and deleted after complete termination of the contractual relationship (until the conclusion of all mutual contractual obligations), insofar as there is no other legal basis for data storage.
In particular, we use Stripe. When using the payment service provider Stripe (Stripe Payments Europe Ltd, Block 4, Harcourt Centre, Harcourt Road, Dublin 2, Ireland), the payment processing is carried out via Stripe. Within the framework of payment processing, the information provided in connection with the order process, in addition to information about your order (name, address, account number, bank sort code, any credit card number, invoice amount, currency and transaction number) will be passed on in accordance with Art. 6 Para. 1 lit. b GDPR for the purpose of executing the contract.
Further information on Stripe's data protection can be found here: https://stripe.com/de/term
We also use the FastBill tool to generate invoices. FastBill is a program of the service provider FastBill GmbH, Holteyer Strasse 30, 45289 Essen, Germany. As part of the payment process, the information provided during the ordering process, including information about your order (name, address, account number, bank code, credit card number, invoice amount, currency and transaction number) will be passed on to FastBill in accordance with Art. 6 Para. 1 lit. b GDPR for the purpose of executing the contract.
You can find more information on data protection at FastBill GmbH here: http://www.fastbill.com/datenschutz.html
On our site you have the possibility to contact us via our chat system. Only anonymous data will be used automatically. This is used to operate the chat system for the purpose of effective customer support by responding to support or contract or general inquiries.
Insofar as you provide personal data during the chat, these will be used for the above-mentioned purpose in accordance with Art. 6 Para. 1 lit. f GDPR and for the purpose of initiating business, concluding contracts and fulfilling contracts in accordance with Art. 6 Para. 1 lit. b GDPR.
For this we use the technology crisp.chat, offered by Crisp IM SARL, 149 Rue Pierre Semard, 29200 Brest, France (registration number: 83308580600010).
With crisp.chat, we can send you messages via live chat, e-mail, SMS or push messages to the extent permitted by law. For this to be possible, we must synchronise our contact information with the users of Crisp IM SARL via an interface. This is done as part of an order processing agreement with Crisp IM SARL.
Crisp IM SARL has also undertaken to implement the European Data Protection Basic Regulation. See also: https://help.crisp.chat/en/article/whats-crisp-eu-gdpr-compliance-status-nhv54c
Our website contains cookies. Cookies are small text files that are stored on your terminal device. They help us to make it easier for you to navigate through our offer and enable the website to be displayed correctly. They are intended to support the user-friendliness of the website and are of course completely harmless to your end device. This temporarily collects information in connection with the terminal device and software you are using. Conclusions about your identity are not drawn from this.
The data processed by cookies are necessary for the purposes mentioned to safeguard our legitimate interests and those of third parties pursuant to Art. 6 Para. 1 S. 1 lit. f GDPR and are automatically deleted after a defined period of time.
Of course, you can also view our website without cookies. To do this, you must prevent cookies from being saved on your hard drive by selecting "do not accept cookies" in your browser settings. For a more detailed description, please refer to the instructions of your browser manufacturer. You can also use the deactivation page of the Network Advertising Initiative (http://optout.networkadvertising.org/) and the US website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/) to deactivate cookies. If you do not accept cookies, this may lead to functional limitations on our website.
h) Google Analytics
On the basis of Art. 6 para. 1 sentence 1 lit. f GDPR, we use Google Analytics, a web analysis service of Google Inc., 1600 AmphitheatreParkway, Mountain View, CA 94043, USA, on our website. The use of GoogleAnalytics is carried out in order to design and continuously optimise our website in line with requirements and to record and evaluate our website statistically. In this context, pseudonymised user profiles are created and cookies are used. Information about your use of this website such as
- your ip address
- date and time of the call
- Name and URL of the file you called up
- Website from which the call is made (referrer URL)
- Information about the browser and operating system you are using
- Name of your Access-Providers.
This information is transferred to a Google server in the USA and stored there. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. The anonymous IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google.
As described above, you can prevent cookies from being stored on your computer. In addition, it is possible to prevent Google from using the data collected by cookies by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=en
Further information on data protection in connection with Google Analytics can be found in the Google Analytics help (https://support.google.com/analytics/answer/6004245?hl=en).
Google complies with European privacy laws and is certified under the Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI
At the same time as using Google Analytics, we use the Leadfeeder program from the company Liidio Oy, Mikonkatu 17, 0100 Helsinki, Finland on our website on the basis of Art. 6 Para. 1 S. 1 lit. f GDPR. Leadfeeders are used to design and continuously optimize our website and to statistically record and evaluate our website. Leadfeeder has access to the list of IP addresses of website visitors provided by Google Analytics in the evaluation and links the list of IP addresses with information about the companies that can be found on the Internet under these IP addresses. Due to the shortening of the IP addresses of website visitors already carried out when using Google Analytics, a direct personal reference is not established. A personal reference can be presumed when viewing the linked company information.
Due to our justified interest in increasing our level of awareness (within the meaning of Art. 6 para. 1 lit. f. GDPR), we include plug-ins of the social network Facebook on our website (address: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland). You can recognize the plug-ins by the Facebook logo or the Like button (I like) - you can find an overview here: http://developers.facebook.com/docs/Plug-ins/
Facebook complies with European privacy laws and is certified under the Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
The plug-in establishes a direct connection between your browser and the Facebook servers. We have no influence whatsoever on the nature and extent of the data that the plug-in transmits to the Facebook Inc. servers. You can find more information here: https://www.facebook.com/help/186325668085084
The plug-in informs Facebook Inc. that you have visited this website as a user. It is possible that your IP address will be stored. If you are logged into your Facebook account during your visit to this website, this information is linked to this account.
If you use the functions of the plug-in - for example by sharing or "linking" a post - the corresponding information is also transmitted to Facebook Inc.
Would you like to prevent Facebook. Inc. links this data to your Facebook account, please log out of Facebook before visiting this website and delete the stored cookies. Via your Facebook profile, you can make further settings for data processing for advertising purposes or object to the use of your data for advertising purposes.
Due to our justified interest in increasing our level of awareness (in the sense of Art. 6 para. 1 lit. f. GDPR), we include plug-ins of the social network Twitter on our website (address: Twitter, Inc. 1355 Market Street, Suite 900, San Francisco, CA 94103). You can recognize the plug-ins by the Twitter logo. You can find an overview here: https://about.twitter.com/resources/buttons
The plug-in establishes a direct connection between your browser and the Twitter servers. We have no influence whatsoever on the nature and extent of the data that the plug-in transmits to the Twitter servers. You can find more information here: https://twitter.com/de/privacy
The plug-in informs Twitter that you have visited this website as a user. It is possible that your IP address will be stored. If you are logged into your Twitter account during your visit to this website, this information is linked to this account.
If you use the functions of the plug-in - for example by using the tweet button - the corresponding information will also be transmitted to Twitter.
If you would like to prevent Twitter from linking this data to your Twitter account, please log out of Twitter before visiting this website and delete the stored cookies.
3. Disclosure of data
Your personal data will not be passed on to third parties. However, data may exceptionally be transmitted for the following reasons:
Insofar as you have given your express consent, Art. 6 Para. 1 S. 1 lit. a GDPR,
to the extent that disclosure is required pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR and there is no overriding legitimate interest in the non-disclosure of your data,
insofar as we are legally obliged to pass on the data, Art. 6 Para. 1 S. 1 lit. c GDPR
to the extent that disclosure in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR is permissible and necessary for the processing of contractual relationships with you.
Insofar as your data is processed by third parties commissioned by us, this is done on the basis of Art. 28 GDPR by means of an order processing contract.
4. rights concerned
right to information Art. 15 GDPR
You have the right to request confirmation from us as to whether we process your personal data. If this is the case, you can request information about this personal data and about the following information:
the processing purposes
the categories of personal data processed
the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations
if possible, the planned duration for which the personal data will be stored or, if that is not possible, the criteria for determining that duration
the existence of a right to rectify or delete personal data concerning you or to limit the processing or to object to such processing
the existence of a right of appeal to a supervisory authority
if the personal data are not collected from you, all available information about the origin of the data
the existence of automated decision making, including profiling, in accordance with Article 22(1) and (4) of the DS Block Exemption Regulation and, at least in these cases, meaningful information on the logic involved and the scope and intended impact of such processing on the data subject.
right of rectification Art. 16 GDPR
You can immediately request the correction of incorrect or incomplete personal data stored by us.
Right to deletion (right to be forgotten) of your data, Art. 17 GDPR
You can request the deletion of your data stored by us, insofar as
the personal data are not used for the purposes for which they were collected or otherwise processed or are no longer necessary;
you withdraw your consent on which the processing is based pursuant to Article 6(1)(a) DS Block Exemption Regulation or Article 9(2)(a) DS Block Exemption Regulation and as a result there is no other legal basis for the processing;
you object to the processing under Article 21(1) DS Block Exemption Regulation and there are no overriding legitimate reasons for the processing or you object to the processing under Article 21(2) DS Block Exemption Regulation;
the personal data have been unlawfully processed;
the deletion of the personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which you are subject;
the personal data relating to Information Society services offered have been collected in accordance with Article 8(1) GDPR.
We are obliged to delete the data upon presentation of the conditions, unless the processing is necessary for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims.
Right to limitation of processing, Art. 17 GDPR
You have the right to demand from us the restriction of the processing to the extent that
the accuracy of the personal data is disputed by you, but only for as long as it takes for us to verify the accuracy of the data;
the processing is unlawful and you do not wish your personal data to be deleted immediately, but instead request that the use of your personal data be restricted;
we no longer need the personal data for the purposes of processing, but you need it to assert, exercise or defend legal claims, or
you have lodged an objection against the processing pursuant to Article 21 (1) GDPR, as long as it has not yet been established whether the legitimate reasons on our part outweigh you.
Insofar as processing is restricted, we may process your personal data - apart from its storage - only with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of an important public interest of the Union or a Member State.
You shall be informed again before the restriction is lifted.
Right to data transferability, Art. 20 GDPR
You have the right to receive the personal data you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another responsible person.
Right of objection, Art. 21 GDPR
You have the right, pursuant to Art. 21 GDPR, to object to the processing of your personal data if it is processed on the basis of a legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR. However, this only applies if there are reasons arising from your particular situation or if the objection is directed against direct advertising.
Right of withdrawal, Art. 7 para. 3 GDPR
You have the right to revoke your consent granted to us pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR at any time. This revocation applies exclusively to future use.
Right to appeal to supervisory authorities
Without prejudice to any other administrative or judicial remedy, you have the right to complain to a supervisory authority, in particular in the Member State of your habitual residence, your place of work or our registered office, if you consider that the processing of your personal data is in breach of the Basic Data Protection Regulation.
To the extent that you wish to exercise your data subject rights, you may also do so by sending an e-mail to the above e-mail address.
5. data security
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as requests that you send to us as the site operator. You can recognize this by the fact that the address line of the browser changes from "http://" to "https://". In addition, a lock symbol can be seen in the browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
In addition, we have taken precautions in the form of technical and organizational measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties.
6. Timeliness and amendment of this data protection declaration
We reserve the right to make changes at any time in order to ensure that our data protection declaration always complies with the current legal requirements. This also applies in the event that the data protection declaration has to be adapted due to new or revised services, for example new services. The new data protection declaration will then take effect the next time you visit our website.
You can view and print our data protection declaration at any time on our website.
7. Complaints and warnings
Should you feel that your rights have been infringed or otherwise disadvantaged, we ask you to inform us of this yourself. You will then receive a personal, individual reply. As part of your duty to minimise damage, we would like to point out that costs will not be borne by a lawyer appointed out of court by you without prior contact with us. There is expressly no will on our part that you instruct a lawyer with a cease-and-desist letter and a declaration of cease-and-desist. Consequently, it is not possible to rely on a presumed will.