Privacy Policy

Data protection is of a particularly high priority for SendProtest. It is possible to use the Internet pages of SendProtest without providing any personal data; however, if a data subject wants to use special enterprise services via our website, it may become necessary to process personal data. If the processing of personal data is necessary and there is no statutory basis for such processing, we generally obtain consent from the data subject.

The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to SendProtest. By means of this data protection declaration, SendProtest would like to inform the general public of the nature, scope, and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.

1. Definitions

The data protection declaration of SendProtest is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration should be legible and understandable for the general public, as well as our users. To ensure this, we would like to first explain the terminology used.

In this data protection declaration, we use, among others, the following terms:

  • a)    Personal data

Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

  • b) Data subject

A data subject is any identified or identifiable natural person, whose personal data is processed.

  • c)    Processing

Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, deletion or destruction. 

2. Name and Address of the controller

The controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is: 

SendProtest

Dunckerstr. 74

10437 Berlin

Deutschland

Phone: (030) 44737608

Email: ciervo@arcor.de

Website: www.sendprotest.com

3. Collection of general data and information

The SendProtest website collects a series of general data and information when a data subject or automated system calls up the website. These general data and information are stored in the server log files. The following may be collected: (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrers), (4) the sub-websites, which are directed to our website via an accessing system, (5) the date and time of access to the Internet site, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system, and (8) any other similar data and information that may be used in the event of attacks on our information technology systems.

When using these general data and information, SendProtest does not draw any conclusions about the data subject. Rather, this information is needed to (1) deliver the content of our website correctly, (2) optimize the content of our website and (3) ensure the long-term viability of our information technology systems and website technology. 

4. Registration on our App

The data subject has the option of registering on the app for a personal account. Which personal data are transmitted to the controller is determined by the respective input mask used for the registration. The personal data entered by the data subject are collected and stored exclusively for internal use by the controller, and for his own purposes. The controller may request transfer to one or more processors (e.g. a parcel service) that also uses personal data for an internal purpose which is attributable to the controller.

5. Subscription to our newsletters

On the SendProtest website, users are given the opportunity to subscribe to our enterprise's newsletter. The input mask used for this purpose determines what personal data are transmitted, as well as when the newsletter is ordered from the controller.

The personal data collected as part of a registration for the newsletter will only be used to send our newsletter. The subscription to our newsletter may be terminated at any time. To revoke consent, a corresponding link is found in each newsletter.

6. Deletion and blocking of personal data

The data controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject.

If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data are blocked or deleted in accordance with legal requirements.

7. Donations

If you wish to send us a donation, we will also process your data (first and last name, address, account information, telephone number and e-mail address, if applicable) in order to initiate, implement and terminate the donation contract (Art. 6 Para. 1 lit. b DSGVO).

 

Any processing beyond the aforementioned purposes, in particular the transfer of your personal data to third parties, will only take place if you have expressly consented thereto and no timely objection has been made or if we are obliged to do so by law or by court order (Art. 6 para. 1 lit. c DSGVO).

 

8. Donation Payment Method: 

a) Data protection provisions about the use of PayPal as a payment processor

PayPal is an online payment service provider. Payments are processed via so-called PayPal accounts, which represent virtual private or business accounts. PayPal is also able to process virtual payments through credit cards when a user does not have a PayPal account. A PayPal account is managed via an e-mail address, which is why there are no classic account numbers. PayPal makes it possible to trigger online payments to third parties or to receive payments. PayPal also accepts trustee functions and offers buyer protection services.

The European operating company of PayPal is PayPal (Europe) S.à.r.l. & Cie. S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.

If the data subject chooses "PayPal" as the payment option in the online shop during the ordering process, we automatically transmit the data of the data subject to PayPal. By selecting this payment option, the data subject agrees to the transfer of personal data required for payment processing.

The personal data transmitted to PayPal is usually first name, last name, address, email address, IP address, telephone number, mobile phone number, or other data necessary for payment processing. The processing of the purchase contract also requires such personal data, which are in connection with the respective order.

The transmission of the data is aimed at payment processing and fraud prevention. The controller will transfer personal data to PayPal, in particular, if a legitimate interest in the transmission is given. The personal data exchanged between PayPal and the controller for the processing of the data will be transmitted by PayPal to economic credit agencies. This transmission is intended for identity and creditworthiness checks.

PayPal will, if necessary, pass on personal data to affiliates and service providers or subcontractors to the extent that this is necessary to fulfill contractual obligations or for data to be processed in the order.

The data subject has the option of revoking consent for the handling of personal data at any time from PayPal. A revocation shall not have any effect on personal data which must be processed, used or transmitted in accordance with (contractual) payment processing.

The applicable data protection provisions of PayPal may be retrieved under https://www.paypal.com/us/webapps/mpp/ua/privacy-full.

b) Data protection provisions about the use of Sofortüberweisung as a payment processor

Sofortüberweisung is a payment service that allows cashless payment of products and services on the Internet. Sofortüberweisung is a technical procedure by which the online dealer immediately receives a payment confirmation. This enables a trader to deliver goods, services or downloads to the customer immediately after ordering.

The operating company of Sofortüberweisung is SOFORT GmbH, Fußbergstraße 1, 82131 Gauting, Germany.

If the data subject chooses Sofortüberweisung ("immediate transfer") as the payment option in our online shop during the ordering process, the data subject’s data will be transmitted to Sofortüberweisung. By selecting this payment option, the data subject agrees to the transmission of personal data required for payment processing.

In the case of purchase processing via direct transfer, the buyer sends the PIN and the TAN to Sofort GmbH. Sofortüberweisung then carries out a transfer to the online merchant after technical verification of the account status and retrieval of additional data to check the account assignment. The online trader is then automatically informed of the execution of the financial transaction.

The personal data exchanged with Sofortüberweisung is the first name, last name, address, email address, IP address, telephone number, mobile phone number, or other data necessary for payment processing. The transmission of the data is aimed at payment processing and fraud prevention. The controller shall immediately transfer other personal data, even if a legitimate interest in the transmission exists. The personal data exchanged between Sofortüberweisung and the controller shall be transmitted by Sofortüberweisung to economic credit agencies. This transmission is intended for identity and creditworthiness checks.

Sofortüberweisung provides personal data to affiliated companies and service providers or subcontractors as far as this is necessary for the fulfillment of contractual obligations or data in order to be processed.

The data subject has the option of revoking consent to the handling of personal data at any time from Sofortüberweisung. A revocation shall not have any effect on personal data which must be processed, used or transmitted in accordance with (contractual) payment processing.

The applicable data protection provisions of Sofortüberweisung may be retrieved under https://www.sofort.com/eng-DE/datenschutzerklaerung-sofort-gmbh/.

c) Credit card donations

If you donate with credit card, your credit card data are exclusively sent via 256-bit SSL encryption to the Web Payment Frontend of micropayment GmbH, Scharnweberstrasse 69, D-12587 Berlin, where the correctness of the card data is compared with the respective credit card institute and creditworthiness and validity are checked. We do not receive your credit card details and are only informed about the successful payment. Information about data security at micropayment GmbH can be found here: https://www.micropayment.de/about/privacy/?_r=gst&_src=ctor

9. Links and involvement of social networks

We have the following links on our website:

  • Google Play Store
  • Apple App Store

The purpose and scope of the data collection and the further processing and use of the data by the providers on their pages as well as your rights in this regard and setting options for the protection of your privacy can be found in the data protection information of the providers under:

  • https://policies.google.com/privacy?hl=de&gl=de
  • https://www.apple.com/de/privacy/

 

We have links to the following social network on the app:

  • Facebook components
  • Twitter recommendation components
  • Instagram components

The purpose and scope of the data collection and the further processing and use of the data by the providers on their pages as well as your rights in this regard and setting options for the protection of your privacy can be found in the data protection information of the providers under:

  • Facebook http://www.facebook.com/policy.php
  • Twitter https://twitter.com/privacy
  • Instagram https://help.instagram.com/155833707900388

10. Period data saved and their deletion 

The criteria used to determine the period of storage of personal data is the respective statutory retention period. 

If you have donated to us, we delete your personal data after the contractual relationship is terminated and all claims on both sides are time-barred and also no more legal storage obligations exist.

When you subscribe to the newsletter, your e-mail address will be deleted as soon as you unsubscribe from the newsletter.

11. Right to information

The data subject has the right to enquire about the personal data collected at any time, free of charge and without delay. The user has the right at any time to revoke his consent to the use of the personal data provided with effect for the future. To obtain information, the user can contact us under the contact details in the imprint.

Note:

This data protection declaration was created with the help of the data protection declaration generator of the DGD Deutsche Gesellschaft für Datenschutz GmbH, which acts as external data protection officer in Munich, in cooperation with the data protection lawyer Christian Solmecke.