Data Protection and Security

We appreciate your interest in our website. The protection of your privacy is very important to us. In accordance with Art. 13 GDPR, in the following you will find detailed information about the processing of your data when you access and use our website and its functionalities.

§ 1 Responsible body and data protection officer

The responsible body for the data processing on the website, is:

Resonio – clickworker GmbH
Büropark Bredeney
Hatzper Str. 30
45149 Essen

Telephone: +49 201 959718-0

External data protection officer of the company is:

Prof. Dr. Thomas Jäschke
DATATREE AG Heubesstraße 10
40597 Düsseldorf

Telefon: +49 211 931 907 00

§ 2 Data processing when accessing the website

In the case of informational use of the website, i.e., if you do not register or otherwise provide us with information, only the following personal data transmitted by your browser to our server will be processed without your intervention

  • your IP address,
  • date and time of access,
  • page/name of the requested file accessed
  • amount of data transferred,
  • status information whether access was successful or not.

This data is stored to perform error analysis and to ensure the stability and security of the website, to evaluate system security and stability, to detect and prevent attacks on our website, and so forth. (Article 6 (1) (f) of the GDPR).

This data will be deleted after 365 days.

To provide access to our website, we have commissioned technical service providers, e.g. hosting service providers who, on our instructions, could gain access to your personal data or process them on our behalf (order processing according to Art. 28 GDPR).

§ 3 Google Fonts

We use Google Fonts on our website, a service provided by Google Ireland Limited with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland. Google Fonts allows us to integrate various web fonts on our website.

When you call up our website, the required font is loaded into the browser cache by your web browser. This is necessary so that your browser can display a visually improved representation of our texts. If your browser does not support this function, a standard font from your computer will be used for display. The integration of these fonts is done by a server call at a server of Google. Among other things, the following personal data is collected by Google Fonts:

  • Your IP address
  • the page you are visiting
  • Your preferred language setting
  • technical information (information about browser, Internet provider, terminal device, screen and window resolution, and operating system)

Google Fonts are used in accordance with Art. 6 para. 1 lit. f GDPR in conjunction with. § 25 para. 1 TTDSG (legitimate interest). Our legitimate interest is based on the use of a common font that can be easily reproduced in the systems of many users and thus make our homepage more attractive and customer-friendly.

We cannot rule out the possibility that personal data may be transferred outside the legal area of the European Union, e.g. to servers located in the USA. Furthermore, we expressly point out that no equivalent level of data protection can be guaranteed for the USA.

For details about the collection and storage of your personal data as well as the type, scope and purpose of their use by Google Fonts, please refer to Google’s privacy policy:

§ 4 Data processing when contacting via mail

If you contact us by email, we use the data you provide to process your request (within the scope of your consent, for the fulfillment of the contract, due to our legitimate interest in proof of communication- Art. 6 (1) lit. a, b and f GDPR.

Data entered by you is stored as long as is necessary for the treatment of your concern, but no longer than required by legal retention periods.

§ 5 Newsletter subscription

You may subscribe to our newsletter. This newsletter provides you with information about our company, our products and services. If you wish to receive the newsletter, we will, in accordance with your consent (article 6 (1) lit a., GDPR), process the mandatory information required for the newsletter registration: your email address. Furthermore, for reasons of proof (Art. 6 (1) as per F GDPR), we save the date and time of the successful registration as well as your IP address for the purpose of spam control.

Your details are stored in our CRM system Campaign Monitor. They are used only for sending the newsletter. By sending the newsletter, we use the services offered by the Campaign Monitor Pty Ltd. company. The server location is generally in the US, which means that a transmission of your data to the US cannot be ruled out. We have signed a “Data Protection Addendum” with Campaign Monitor Ltd. to ensure that your data is processed in accordance with the regulations of the GDPR. The agreement includes the conclusion of the EU standard contractual clauses.

More information about Campaign Monitor’s privacy policy can be found at

You may unsubscribe from the newsletter at any time via a link in the newsletter tool. Your disclaimer will immediately erase your information unless you have filed it with us in a different context (such as an application) and may be subject to statutory retention requirements.

We would like to point out that we evaluate your user behavior when sending the newsletter. For this evaluation, the emails sent include so-called web beacons or tracking pixels that represent one-pixel image files stored on our website. For the analysis, we link data and the web beacons with your email address and an individual ID. The data mentioned in the previous sentence includes the IP address, the date and time of the request; the time zone difference to Greenwich Mean Time; the content of the request (concrete page); the access status / HTTP status code; the amount of data transferred; the website from which the request comes, the browser; the operating system and its interface and the language, as well as the version of the browser software. The links included in the newsletter also contain this ID.

Data is collected exclusively pseudonymized, so the IDs are not linked to your other personal data. Any direct personal reference is excluded.

§ 6 Use of Cookies

Definition: Temporary and permanent cookies

Cookies are small text files that are placed on your computer by a web server. The next time you visit the website, it can recognize your web browser based on the cookie. Cookies cannot execute programs or transfer viruses to your computer. They are used to make the website as a whole more user-friendly and effective.

There are different variants of cookies, the scope and functionality of which we would now like to explain:

There are the so-called temporary or transient cookies, which are automatically deleted when you close the browser. These include, among others, the session cookies. These store a so-called session ID, with which various requests of your browser can be assigned to a common session. This allows your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close your web browser.

Furthermore, there are the permanent or persistent cookies, which initially remain stored after closing the browser, but are automatically deleted after a specified duration. The duration differs depending on the cookie, whereby we would like to point out that you can delete the cookies at any time using the security settings of your web browser.

Third-party cookies are cookies that are offered by providers other than the responsible party that operates the online offer.

1.3. Legal basis for the use

The use of certain cookies is necessary to ensure the functionality and security of our site (Art. 6 para. 1 lit. f GDPR, legitimate interest). When you visit our site for the first time, you will be informed via our Consent Banner which technically necessary cookies are mandatory for the operation of the site. Via the Consent banner, you can also make a selection as to which technically unnecessary cookies are used based on your visit to our site.

The implementation of this selection via the Consent Banner used by us requires the use of a cookie that is stored on your terminal device for a period of one year, unless you delete it beforehand through your browser settings. Through the use of a Consent Banner, the following data is processed:

  • Date and time of the visit,
  • Browser information,
  • Consent information,
  • Device information,
  • The IP address of the requesting device.

The legal basis is our legitimate interest (Art. 6 para. 1 lit. f GDPR) to keep a record of the cookie selection you have made and to comply with our accountability according to Art. 5 para. 2 GDPR.

If you consent via the Consent banner that technically unnecessary cookies (usually for the implementation of tracking and remarketing tools) are set, the processing of your personal data is based on your consent (Art. 6 para. 1 lit. a GDPR in conjunction with § 25 para. 1 TTDSG).

1.4. Option to revoke cookies

You can revoke your consent at any time in accordance with Art. 7 Para. 3 GDPR/ § 8 Para. 6 KDG/ § 11 Para. 3 DSG-EKD/ § 7 Para. 3 KO.HA.DS by clicking on the “Show cookie settings” button below and thus calling up the Consent banner. Based on the banner, you can then make a new selection.
Furthermore, you have the option to restrict or prevent the installation of cookies via the settings of your browser. Furthermore, you can delete cookies that have already been stored at any time. The respective steps and measures, how you delete the cookies, depends on your concretely used internet browser.

§ 7 Use of Google Analytics

If you have given your consent, this website uses Google Analytics 4, a web analytics service provided by Google LLC. The responsible party for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

Scope of processing
Google Analytics uses cookies that enable an analysis of your use of our websites. The information collected by means of the cookies about your use of this website is generally transferred to a Google server in the USA and stored there.

Google Analytics 4 has IP address anonymization enabled by default. Due to IP anonymization, your IP address will be shortened by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

During your website visit, your user behavior is recorded in the form of “events”. Events can be:

  • Page views
  • First visit to the website
  • Start of session
  • Your “click path”, interaction with the website
  • Scrolls (whenever a user scrolls to the bottom of the page (90%))
  • clicks on external links
  • internal search queries
  • interaction with videos
  • file downloads
  • seen / clicked ads
  • language settings

Also recorded:

  • Your approximate location (region)
  • your IP address (in shortened form)
  • technical information about your browser and the end devices you use (e.g. language setting, screen resolution)
  • your internet service provider
  • the referrer URL (via which website/advertising medium you came to this website)

Purposes of processing
On behalf of the operator of this website, Google will use this information to evaluate your use of the website and to compile reports on website activity. The reports provided by Google Analytics serve to analyse the performance of our website.

Recipients of the data are/may be:

  • Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as processor under Art. 28 GDPR).
  • Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
  • Alphabet Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

It cannot be ruled out that US authorities may access the data stored by Google.

Third country transfer
Insofar as data is processed outside the EU/EEA and there is no level of data protection corresponding to the European standard, we have concluded EU standard contractual clauses with the service provider to establish an appropriate level of data protection. The parent company of Google Ireland, Google LLC, is based in California, USA. A transfer of data to the USA and access by US authorities to the data stored by Google cannot be ruled out. The USA is currently considered a third country from a data protection perspective. You do not have the same rights there as within the EU/EEA. You may not be entitled to any legal remedies against access by authorities.

Duration of storage
The data sent by us and linked to cookies are automatically deleted after 14 months. The deletion of data whose retention period has been reached occurs automatically once a month.

Legal basis
The legal basis for this data processing is your consent pursuant to Art.6 para.1 p.1 lit.a GDPR in conjunction with. § 25 para. 1 TTDSG.

You can revoke your consent at any time with effect for the future by accessing the cookie settings HERE and changing your selection there. The lawfulness of the processing carried out on the basis of the consent until the revocation remains unaffected.

You can also prevent the storage of cookies from the outset by setting your browser software accordingly. However, if you configure your browser to reject all cookies, this may result in a restriction of functionalities on this and other websites. In addition, you can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google, by

a. not giving your consent to the setting of the cookie or
b. downloading and installing the browser add-on to disable Google Analytics HERE.

For more information on Google Analytics’ terms of use and Google’s privacy policy, please visit and at

§ 8 Your rights as a user

You have the following rights with regard to the functions of our website explained in the section “Information on data processing” and the purposes of data processing described there:

Right of access (Art. 15 GDPR)

You have the right to receive information from us about the processing of your personal data within the scope of Art. 15 GDPR.

Right of rectification (Art. 16 GDPR)

You have the right, within the scope of Art. 16 GDPR, to demand that we immediately correct any inaccurate personal data relating to you and/or complete any incomplete personal data.

Objection (Art. 21 GDPR)

You have the right, within the scope of Art. 21 GDPR, to object at any time to the processing of personal data concerning you for reasons arising from your particular situation, provided that the processing is based on an overriding interest or your data is used for the purpose of direct marketing.

Revocation in case of consent (Art. 7 (3) GDPR)

If you have provided your personal data on the basis of consent, you have the right to revoke the consent in accordance with Article 7 (3) GDPR at any time, without giving reasons, for the future. We would like to point out that the revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

Restriction of processing (Art. 18 GDPR)

You have the right to request the restriction of data processing concerning you within the scope of Art. 18 GDPR.

Deletion (Art. 17 GDPR)

You have the right to demand the immediate deletion of the personal data concerning you within the scope of Art. 17 GDPR. In this context, statutory retention periods that waive deletion must be taken into account.

Right to data portability (Art. 20 GDPR)

You have the right, within the scope of Art. 20 GDPR, to receive the personal data concerning you that you have provided to us in a structured and machine-readable format and to transfer this data to another controller.

If you have any further questions, please contact our data protection officer directly.
Please use the following contact option for your inquiry:

Right of appeal (Art. 77 GDPR)

You have the right to contact the data protection supervisory authority regarding data protection compliance and a complaint in this regard.

The authority responsible for us is:
Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW)
Kavalleriestr. 2-4 | 40213 Düsseldorf
Telephone: +49 211 384 24-0 | Email: