We take privacy seriously and will NEVER:
For a german Version of the Privacy Poliy please scroll down or click here.
The use of the internet pages of
the colorbook.io is possible without any indication of personal data. However,
if a data subject wishes to use special services of our company via our
website, processing of personal data may be necessary. If the processing of
personal data is necessary and there is no legal basis for such processing, we
generally obtain the consent of the data subject.
As a Swiss company without branches abroad, we are obligated to the applicable data protection regulations and laws of
Switzerland. In order to enable customers from the European Union (EU) to use our services, we also comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons in the processing of personal data, on the free movement of data and on the repeal of Directive 95/46/EC (the General Data Protection Regulation, hereinafter referred to as the GDPR). The legal basis for data processing is Article 6(1) of the lit. f GDPR.
Responsible according to Art. 4 sec. 7 of the DSVGO:
Data protection officer in accordance with Art. 37 sec. 4 of the DSVGO:
is based on the terms used by the European legislator for the adoption of the
read and understand, both for the public and for our customers and business
partners. In order to ensure this, we would like to explain the terms used in
advance. We use, among other things, the following terms in this Privacy
Personal data is any information
relating to an identified or identifiable natural person (hereinafter 'data
subject'). Identifiable is a natural person who, directly or indirectly,
directly or indirectly, by means of an identifier such as a name, identification
number, location data, an online identifier or one or more special
characteristics, which are of the physical, physiological, genetic,
psychological, economic, cultural or social identity of that natural person.
The data subject is any
identified or identifiable natural person whose personal data is processed by
Processing is any operation or
series of operations carried out with or without the aid of automated
procedures in connection with personal data such as the collection, collection,
organisation, ordering, storage, adaptation or modification, the reading,
querying, use, disclosure by transmission, distribution or any other form of
provision, reconciliation or linking, restriction, deletion or destruction.
Restriction of processing
Restriction of processing is the
marking of stored personal data with the aim of restricting their future
Profiling is any type of
automated processing of personal data consisting in the use of such personal
data to assess certain personal aspects relating to a natural person, in
particular to address aspects of the to analyse or predict this natural
person's work performance, economic situation, health, personal preferences,
interests, reliability, behaviour, whereabouts or relocation.
Pseudonymisation is the
processing of personal data in such a way that the personal data can no longer
be assigned to a specific data subject without the use of additional
information, provided that such additional data data is information is kept
separately and subject to technical and organisational measures to ensure that
the personal data is not assigned to an identified or identifiable natural
Responsible or responsible for the processing of
The person responsible or
controller for the processing is the natural or legal person, authority, body
or other body that decides alone or jointly with others on the purposes and
means of the processing of personal data. Where the purposes and means of such
processing are specified by Union law or the law of the Member States, the
controller or the specific criteria for his designation may be laid down in
accordance with Union law or the law of the Member States. to become.
Processor is a natural or legal
person, authority, body or other body that processes personal data on behalf of
The recipient is a natural or
legal person, authority, body or other body to which personal data are
disclosed, whether or not it is a third party. However, authorities which may
receive personal data under a particular investigation under Union or Member
State law shall not be deemed to be recipients.
Third party shall be a natural or
legal person, authority, body or other body other than the data subject, the
controller, the processor and the persons who, under the direct responsibility
of the controller or the processor to process the personal data.
Consent is any expression of
intent made by the data subject voluntarily in an informed and unequivocal
manner in the form of a declaration or other unambiguous affirmative action by
which the data subject is informed and unequivocal. that it agrees to the
processing of the personal data concerning it.
Collection of general data and information
The colorbook.io website collects
a number of general data and information with each call-up to the website by a
data subject or an automated system. This general data and information is stored
in the server's log files. The (1) browser types and versions used, (2) the
operating system used by the accessing system, (3) the website from which an
accessing system enters our website (so-called referrers), (4) the
sub-websites, which are accessed via an accessing system on our website, (5)
the date and time of access to the website, (6) an Internet protocol address
(IP address), (7) the Internet service provider of the accessing system and (8)
other similar data and information used to prevent attacks on our information
When using this general data and information, the colorbook.io does not draw any conclusions about the data
subject. Rather, this information is needed in order to (1) deliver the contents of our website correctly, (2) to optimize the contents of our website as well as the advertising for it, (3) the long-term functioning of our information technology systems. and the technology of our website, and (4) to provide law enforcement agencies with the information necessary for law enforcement in the event of a cyberattack. This anonymously collected data and information are therefore evaluated by the colorbook.io on the one hand statistically and further with the aim of increasing the data protection and data security in our company, in order to ultimately achieve an optimal level of protection for the data we have processed personal data. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.
Order and contact forms on our website
Bei Fragen jeglicher Art so auch Supportanfragen sowie Bestellungen unserer Dienstleistungen bieten wir Ihnen die Möglichkeit, mit uns über auf der Webseite bereitgestellte Formulare Kontakt aufzunehmen. Neben der eigentlichen Nachricht ist dabei mindestens die Angabe Ihres Namens und einer gültigen E-Mail-Adresse erforderlich, damit wir wissen, welche Art von Information Sie von uns wollen, von wem die Anfrage stammt und um diese beantworten zu können. Weitere Angaben können freiwillig getätigt werden oder sind je nach Formular (Bestellformular) nötig, um Ihre Anfrage in Ihrem Interesse bearbeiten zu können. Die Datenverarbeitung zu diesen Zwecken erfolgt nach Art. 6 Abs. 1 DSGVO auf Grundlage Ihrer freiwillig erteilten Einwilligung. Die für die Benutzung der Kontaktformulare von uns erhobenen personenbezogenen Daten werden ausschliesslich zur Bearbeitung Ihrer Anfrage verwendet. Zur Bearbeitung Ihrer Anfrage kann es gegebenenfalls erforderlich sein, dass Daten an Dritte übermittelt werden. Ob, an wen, unter welchen Umständen und Daten an dritte übermittelt werden, sehen Sie anhand der folgenden Tabelle:
Data transfer possible if...*
Cloud service for automated creation and sending of invoices by mail and or email
... You can order from us... We will invoice you
... Order from us
System for recording and processing support requests
... contact us in any form
Office 365 www.office365.com
Communication platform for external and internal communication of colorbook.io by e-mail
... You can order from us... contact us in any form
Chat tool built into website
... contact us via live chat
Communication platform for internal communication of colorbook.io
... contact us in any form
... If you pay an invoice from us via PayPal
... If you pay an invoice from us by credit card
Platform for newsletter shipping
... If you have subscribed to our newsletter
Duration of storage and deletion of data
In order to be able to fulfil offers and contractually agreed services within the defined framework, data shall be stored as long as a business relationship is not required by law to the contrary. between you and the colorbook.io. Unless otherwise defined, a business relationship begins with your registration for an offer of the colorbook.io and ends with termination by you or by the colorbook.io . The deletion of data may be requested by you in the context of your business relationship with colorbook.io on the basis of data subject rights. For legal reasons, the right to erasure of data extends only to data collected by the colorbook.io or at the instigation of the colorbook.io or the data that you have collected. Data that are sent to us outside of a business relationship or outside the use of one of our offers will be deleted within the scope of the data subject rights, provided that they do not rebut to applicable law. The colorbook.io has the right to charge you a systemic cost rate for cancellations that have been requested by you on the basis of data subject rights and exceed an appropriate and proportionate level.
You have the right to:
Right to object
Insofar as your personal data is
based on legitimate interests in accordance with Art. f GDPR, you have the
right to object to the processing of your personal data in accordance with
Article 21 GDPR, provided that there are reasons arising from your particular
situation or the objection to direct marketing judged. In the latter case, you
have a general right of objection, which is implemented by us without
specifying a specific situation. If you would like to exercise your right of
withdrawal or objection, please send an e-mail to: email@example.com
Within the website visit, we use
the common Secure Socket Layer (SSL) method in conjunction with the highest
level of encryption supported by your browser. This is usually 256-bit
encryption. If your browser does not support 256-bit encryption, we'll use
128-bit v3 technology instead. You can tell whether a single page of our
website is transmitted encrypted by the closed display of the bowl or lock icon
in the status bar of your browser.
We also use appropriate technical and organisational security measures to prevent your data from accidental or intentional manipulation, partial or total loss, destruction or unauthorized
access. third parties. Our security measures are continuously improved in line with technological developments.
Topicality and amendment of this date protection declaration
Handling personal data
Personal data is all information that serves to identify your person and which can be traced back to you – for example, your name, e-mail address and telephone number. Under no circumstances will we share personal data with third parties without your consent.
Handling contact details
If you contact the website operator through the contact options offered, your details will be stored so that it can be used to process and respond to your request. Without your consent, this data will not be passed on to third parties.
Access data / logfiles
We, or our hosting provider, collect on the basis of our legitimate interests within the meaning of Art. 6 sec. 1 lit. f. GDPR data on each access to the server on which this service is located (so-called server log files). The access data includes the name of the retrieved website, file, date and time of retrieval, amount of data transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting providers. Data whose further retention is required for evidence purposes shall be excluded from deletion until the relevant incident has been finally clarified.
The controller has integrated the
component Google Analytics (with anonymization function) on this website.
Google Analytics is a web analytics service. Web analysis is the collection,
collection and analysis of data on the behaviour of visitors to websites. A web
analysis service collects, among other things, data on which website a data
subject has come to a website (so-called referrers), which subpages of the
website have been accessed or how often and for which length of stay a data
subject has been underside. A web analysis is mainly used for optimizing a
website and for cost-benefit analysis of Internet advertising. The operating
company of the Google Analytics component is Google Inc., 1600 Amphitheatre
Pkwy, Mountain View, CA 94043-1351, USA.
The purpose of the Google Analytics component is to analyse visitor flows on our
website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us, which show the activities on our website, and to further with the use of our website. website related services. It is possible for the data subject to object to the collection of data generated by Google Analytics relating to the use of this website as well as to the processing of this data by Google and to prevent such data. To do this, the data subject must download and install a browser add-on under the https://tools.google.com/
Our website uses the Google Tag Manager of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The Google Tag Manager transmits the user's IP address. This information is usually transmitted to a Google server in the USA and stored there. We would like to point out that on this website Google Analytics has been extended by the code "gat._anonymizeIp();" to ensure an anonymized collection of IP addresses (so-called IP masking). If anonymization is active, Google shortens IP addresses within Member States of the European Union or in other contracting states of the Agreement on the European Economic Area, so it is not possible to draw conclusions about your identity. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there.
The controller has integrated
components of the company Facebook on this website. Facebook is a social
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025,
USA. If a data subject lives outside the United States or Canada, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland is responsible for the processing of personal data.
Each call-up to one of the individual pages of this website, which is operated by the controller and on which a Facebook component (Facebook plug-in) has been integrated, the internet browser is displayed on
the information technology system of the data subject is automatically prompted by the respective Facebook component to download a presentation of the corresponding Facebook component from Facebook. A complete overview of all Facebook plug-ins can be found under https://developers.facebook.
If the data subject is logged in to Facebook at the same time, Facebook recognizes with each call-up to our website by the data subject and during the entire duration of the respective stay on our website,
which specific sub-page of our website visits the data subject. This information is collected by the Facebook component and assigned by Facebook to the respective Facebook account of the data subject. If the data subject presses one of the Facebook buttons integrated on our website, such as the "Like" button, or if the data subject makes a comment, Facebook assigns this information to the personal Facebook user account of the data subject and stores this personal data.
Facebook receives information via the Facebook component that the data subject has visited our website whenever the data subject is simultaneously on Facebook at the time of accessing our
website. logged in; this takes place regardless of whether the data subject clicks on the Facebook component or not. If such transmission of this information to Facebook is not wanted by the data subject, the data subject can prevent the transmission by logging out of his Facebook account before calling up our website.
The data policy published by Facebook, which is available under https://de-de.facebook.com/
data. It also explains the settings that Facebook offers to protect the privacy of the data subject. In addition, different applications are available that make it possible to suppress data transmission to Facebook. Such applications can be used by the data subject to suppress a data transfer to Facebook.
Newsletter and newsletter tracking
On the website of the
colorbook.io users are given the opportunity to subscribe to the newsletter of
our company. The personal data that are transmitted to the controller when
ordering the newsletter is determined by the input mask used for this purpose.
The colorbook.io informs its customers and business partners at regular intervals by means of a newsletter about the company's
offers. The newsletter of our company can only be received by the data subject if (1) the data subject has a valid e-mail address and (2) the data subject registers for the sending of the newsletter. For legal reasons, a confirmation e-mail will be sent to the e-mail address entered by a data subject for the first time for sending the newsletter. This confirmation e-mail is used to verify whether the owner of the e-mail address as a data subject has authorized the receipt of the newsletter.
The personal data collected during a subscription to the newsletter will only be used for sending our
newsletter. In addition, subscribers to the newsletter could be informed by e-mail if this is necessary for the operation of the newsletter service or registration therein, as in the event of changes to the newsletter offer or in the case of changes to the technical circumstances could be the case. The subscription to our newsletter can be cancelled by the data subject at any time. The consent to the storage of personal data, which the data subject has given us for sending the newsletter, can be revoked at any time. For the purpose of revoking consent, a corresponding link can be found in each newsletter.
The newsletters of the colorbook.io contain so-called tracking pixels.
A tracking pixel is a thumbnail that is embedded in such emails, which are sent in HTML format to enable log file recording and log file analysis. This allows a statistical evaluation of the success or failure of online marketing campaigns to be carried out. Using the embedded tracking pixel, the colorbook.io can detect if and when an email was opened by a data subject and which links in the email were accessed by the data subject.
Such personal data collected via the tracking pixels contained in the newsletters are stored and evaluated by the controller in order to optimize the sending of the newsletter and to optimize the content of
future newsletter even better to the interests of the data subject. This personal data will not be passed on to third parties. Affected persons are entitled at any time to revoke the relevant separate declaration of consent, which is given via the double opt-in procedure. After a revocation, this personal data will be deleted by the controller. Unsubscribe from receipt of the newsletter automatically means the colorbook.io as a revocation.
We process the data of our customers within the scope of our contractual services to which conceptual and strategic consulting, campaign planning, software and design development/consulting or maintenance, implementation of campaigns and processes/handling, server administration, data analysis/consulting services and training services. In doing so, we process inventory data (e.g., customer master data, such as names or addresses), contact data (e.g., e-mail, telephone numbers), content data (e.g., text entries, photographs, videos), contract data (e.g., subject matter of contract, term), payment data (e.g., bank details, payment history), usage and metadata (e.g. in the context of the evaluation and measurement of success of marketing measures). In principle, we do not process specific categories of personal data, unless these are components of commissioned processing. Those affected include our customers, interested parties as well as their customers, users, website visitors or employees as well as third parties. The purpose of the processing is the provision of contractual services, billing and our customer service. The legal bases of the processing are derived from Article 6(1) of the lit. b GDPR (contractual services), Art. f GDPR (analysis, statistics, optimization, security measures). We process data that are necessary for the establishment and fulfilment of the contractual services and indicate the necessity of their disclosure. Disclosure to external parties is only made if it is required under an order.
Online application / application procedure
The controller collects and processes the personal data of applicants for the purpose of processing the application process. Processing can also be carried out electronically. This is particularly the case if an applicant submits relevant application documents to the controller by electronic means, for example by e-mail or via a web form located on the website. If the controller concludes an employment contract with an applicant, the transmitted data is stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If no employment contract is concluded with the applicant by the controller, the application documents shall be automatically deleted two months after notification of the cancellation decision, unless any other legitimate conflict with the interests of the controller. Other legitimate interests in this sense are, for example, an obligation to provide evidence in proceedings under the General Equal Treatment Act (AGG).
Our website uses Google AdSense, a service for integrating advertisements from Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. GoogleAdSense uses so-called 'cookies', text files that are stored on your computer and which enable an analysis of the use of the website. Google AdSense also uses so-called web beacons (invisible graphics). Through these web beacons, information such as visitor traffic on these pages can be evaluated. The information generated by cookies and web beacons about the use of this website (including your IP address) and delivery of advertising formats is transmitted to a Google server in the USA and stored there. This information may be passed on by Google to contractual partners of Google. However, Google will not merge your IP address with any other data you store. You can prevent the installation of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website to the full extent. By using this website, you consent to the processing of the data collected about you by Google in the manner and for the purposes described above.
Users can optionally create a
user account. As part of the registration process, the required mandatory
information will be communicated to the users. The data entered during the
registration process will be used for the purposes of using the offer. Users may
be informed by e-mail about information relevant to the offer or registration,
such as innovations, changes in the scope of the offer or technical
circumstances. It is the responsibility of users to secure their data before
the end of the contract if they have been terminated. We are entitled to
irretrievably delete all data of the user stored during the term of the
contract. In the context of the use of our registration and registration
functions as well as the use of the user account, the IP address and the time
of the respective user action will be stored. The storage is based on our
legitimate interests, as well as the user in protection against misuse and
other unauthorized use. In principle, this data will not be passed on to third
parties, unless it is necessary for the prosecution of our claims or there is a
legal obligation under Art. 6 sec. 1 lit. c GDPR.
|Verarbeiter||Beschreibung||Datenweitergaben möglich, wenn…*|
|Cloud-Dienst zum automatisierten Erstellen und Versand von Rechnungen per Post und oder E-Mail||…Sie bei uns bestellen
…Wir Ihnen eine Rechnung
|Zahlungsanbieter||…Sie bei uns bestellen|
|System zur Erfassung und Bearbeitung von Supportanfragen||…Sie uns in irgend einer Form kontaktieren|
|Kommunikationsplattform zur externen und internen Kommunikation von colorbook.io per E-Mail||…Sie bei uns bestellen
…Sie uns in irgend einer Form kontaktieren
|In Website integriertes Chat-Werkzeug||…Sie uns per Livechat kontaktieren|
|Kommunikationsplattform zur internen Kommunikation von colorbook.io||…Sie uns in irgend einer Form kontaktieren|
|Zahlungsanbieter||…Wenn Sie eine Rechnung von uns per PayPal bezahlen|
|Zahlungsanbieter||…Wenn Sie eine Rechnung von uns per Kreditkarte bezahlen|
|Plattform zum Newsletter Versand||…Wenn Sie unseren Newsletter abonniert haben|
Sie haben das Recht: