Responsible Authority
We are happy about you visiting our website. We would like to introduce you to the responsible authority in terms of data protection law as applicable:
Kosmoskosmos Webentwicklung
Sole proprietor Andreas Kosmowicz e.K.
Klingenstr. 22
04229 Leipzig
Phone: +49 341 39281989
E-mail: info@kosmoskosmos.de
General Information
Pursuant to our statutory obligations, we would like to inform you about the collection and use of your personal data.
When you use our website, personal data about you will be collected. This may happen by you entering the data yourself, for example your e-mail address. But our system also collects your data automatically, for example whenever you visit our website. This happens irrespective of the device or the software that you use to visit our website.
All data that you enter in our app is provided voluntarily; there are no disadvantages to you if you do not provide data. But without certain data, we are unable to provide services or to conclude contracts. Whenever such information is necessary, we will point it out to you.
On this website, the user’s personal data is only collected within the framework of the existing data-protection law, in particular the General Data Protection Regulation (GDPR). The legal terms used in the text are defined in Art. 4 of the GDPR.
The GDPR allows data processing in three cases in particular:
- in accordance with Art. 6 para. 1 (a) and 7 GDPR, when you have consented to us processing your data; in this Privacy Policy and in the cases of consent pursuant to Art. 4 no. 11 GDPR, we will inform you in detail and each time for what purposes and under what circumstances your data will be processed by us;
- in accordance with Art. 6 para. 1 (b) GDPR, when processing your personal data is necessary for negotiating, concluding or performing a contract;
- in accordance with Art. 6 para. 1 (f) GDPR, if the balancing of interests leads to the conclusion that the processing is necessary to protect our legitimate interests; this means in particular our interests to analyse, optimise and secure the offers on our website – meaning primarily the analysis of user behaviour, setting up profiles for advertisement purposes and storage of access data as well as the use of third-party providers.
Inventory Data
We collect inventory data as far as it is necessary to establish, negotiate or amend a contract (including one without remuneration) between us and the user. This can be: customer data (for example name, address), contact data (for example e-mail address, phone number), service data (for example services ordered, duration, payment). Upon establishing the user relationship, we will ask you for this data (for example name, address and e-mail address) and will also tell you which of the information is required to establish the user relationship.
Usage Data
We also collect usage data to allow users to use the services on our website. These may consist of: usage information (for example visited websites or parts, duration of visit, interest in services), content data (for example data, text, images, sounds, videos entered or uploaded by you), meta data (for example identity of your device, location, IP address).
We will only combine usage data if and insofar as it is necessary for billing purposes. Otherwise, we will only put together usage data pseudonymously and only insofar as you have not objected. You may send this objection to the address indicated in the “About Us” section or the responsible authority indicated in this Privacy Policy at any time.
The legal basis for this data processing are our legitimate interests pursuant to Art. 6 para. 1 (f) GDPR in analysing the website and your use, possibly also the statutory permission to store data as part of the negotiation of a contract pursuant to Art. 6 para. 1 (b) GDPR.
Hoster
Hetzner
Our website is made available on the internet by a service provider (provider or hoster). We use the service of Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany (hereinafter "Hetzner").
We have concluded a data processing contract with our provider. Accordingly, our provider is obliged to process your data only on our behalf and in accordance with our instructions. Further information on data processing by our provider can be found in their privacy policy at https://www.hetzner.com/rechtliches/datenschutz/. The legal basis for this data processing is, on the one hand, our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR in the provision and use of our website on the internet and, where relevant, also the legal permission to store data in the context of the initiation of a contractual relationship pursuant to Art. 6 para. 1 lit. b GDPR.
Each time you use this website, our provider processes information, the so-called server log files, which are automatically transmitted by your browser each time you access websites on the internet. These are:
- your IP address
- type and version of your browser
- host name
- time of access
- the website from which you visited our website
- name of the website you visited
- exact time of access, as well as
- the amount of data transferred
This data is only used for statistical purposes and does not allow us to identify you as a user.
First Contact through Electronic Request
If you contact us in electronic form (for example by mail, fax, phone, messenger, etc.), we store and process the data which you have given us (for example name, contact information, content of the request). This is based on our legitimate interest in an effective communication with customers in accordance with Article 6 para. 1 (a) GDPR and, as far as it concerns a request to enter into or to perform a contract, also with Article 6 para. 1 (b) GDPR.
We will only pass on this data to third parties as far as required for the performance of the contract (in accordance with Article 6 para. 1 (b) GDPR), by the overwhelming interest in effective services (in accordance with Article 6 para. 1 (f) GDPR) or based on your consent (in accordance with Article 6 para. 1 (a) GDPR) or if there is another legal permission or obligation.
You may ask us at any time and without any cost to provide information about the purpose of the processing, the origin and the recipient, if any, of your data. You may also request that we correct, delete or limit the processing of your personal data. You may object against the (further) processing of your data at any time and you have a right for the data to be made transferable as well as the right to file a complaint with the competent supervisory agency.
In general, your data will only remain stored as long as required by the purpose of the respective data processing. A longer storage is an option, in particular when required in order to pursue our rights, for other legitimate interests of ours or when there is a statutory duty to keep the data longer (for example record-keeping under tax law, statute of limitations).
Consent
Whenever we ask you for your consent for the processing of your data, we will inform you in clear language and in an easily accessible way about the cases for which you will be granting your consent. Any consent that we ask you for is voluntary. Any advantage that you wish to gain by granting consent is also available without consent; simply ask us.
Regarding any consent, you have the right to revoke any consent given to us for the processing of your personal data at any time. You just need to contact us without any particular formal requirement, for example through our contact form, an e-mail to the e-mail address indicated in the “About Us” section or a link to unsubscribe (if offered by us). Your withdrawal has no effect on the legality of the data processing carried out up to that point.
Storage Period
Generally, your data will only remain stored as long as required by the purpose of the respective data processing. Storage beyond that is possible in particular if it is still required for pursuing our rights or for other legitimate interests of ours.
For your inventory data which were necessary to perform a contract (including one without remuneration), this means that we store this data until the complete performance or termination of the contractual relationship plus the limitation period (which is generally 2 or 3 years) plus an adequate extra time for potential interruptions of the limitation period.
For your usage data which was collected in the course of your use of the website, this means that we will store it only for the time still required for the proper functionality of our website and as long as we still have a legitimate interest. Statistical information will be primarily stored by us in pseudonymous form.
Beyond that, we still store your data for as long as we are required to do so by law. This concerns in particular the tax-law requirements to keep records, usually for 6 or even 10 years.
Users‘ Rights
You may request us anytime to provide information about the personal data stored about you free of charge. To avoid misuse, this will require personal identification.
Deletion, Correction, Limitation
You may at any time demand from us that we correct (or complete) incorrect data as well as a limitation of the processing of data or deletion of your data. This applies in particular if the reason for processing the data is no longer valid, if a required consent has been revoked and there is no other legal basis or if our data processing is unlawful. We will then correct, block or even delete your personal data without delay as far as permitted by law.
Objection
The right to object to advertisement is governed by our text regarding consent:
Regarding any consent, you have the right to revoke any consent given to us for the processing of your personal data at any time. You just need to contact us without any particular formal requirement, for example through our contact form, an e-mail to the e-mail address indicated in the “About Us” section or a link to unsubscribe (if offered by us). Your withdrawal has no effect on the legality of the data processing carried out up to that point.
Data Transfer
You may request us to transfer the data stored about you in machine-readable form.
Complaint
If you feel that our data processing has violated any of your rights, you may file a complaint with the competent regulatory agency (here you find a list of the agencies).
Changes to the Privacy Policy
If and when factual or legal reasons will compel us to amend the Privacy Policy, we will update this page accordingly. This will not change the consent provided by the user.
Data Entry
Encryption of Data Entry
When you enter data on our website, whether in a contact form, during the registration process, when you log in or for payment purposes, the website, where you enter the data, is encrypted. Thus, third parties can not read what you enter. You will recognise the encryption by the lock symbol in your browser and by the URL beginning with “https“ instead of “http“.
Contact Forms
General contact form
When you fill out a contact form or when you send us an e-mail or another electronic message, your information will be stored for the processing of the request, for possible follow-up questions or for other related questions and will only be used to follow up with the request.
Your data will be transferred in an encrypted manner, preventing third parties from reading your data while it is being entered.
Basis for this storage is the safeguarding of our legitimate interests in regard to communication with interested users pursuant to Art. 6 para. 1 (f) GDPR and in the case of inquiries prior to entering into a contract also the performance of a contract pursuant to Art. 6 para (b) GDPR.
Your data remains stored for as long as the processing of the request requires, in particular as long as the storage is still necessary to perform the contract, to pursue our rights or for our other legitimate interests or we are compelled by law to keep your data stored (for example based on tax-law requirements to maintain files).
Newsletter
Brevo
If you subscribe to the newsletter offered on our page, we will inform you in detail about the information we will send you, which of your data will be stored and for what it will be used. We will not pass on your data to third parties and we will only use it for mailing the newsletter.
We will only mail you the newsletter if you have provided us with prior consent. To that purpose, you will receive an e-mail from us with a link and further details and we will ask for your consent. By confirming that link, you declare your consent to receive the newsletter and advertisement from us.
Because we are legally required to record your consent as part of the double opt-in, your subscription to the newsletter, the mailing of our consent e-mail and your consent by clicking on the link will be recorded and stored with location and time as well as with your IP address.
The basis for the storage is your consent pursuant to Art. 6 para. 1 (a) GDPR, which you grant us when you register for the newsletter. You may withdraw that consent at any time, for which any notice to us, without any formal requirement, is sufficient (for example through the contact form or by e-mail or by using the link to unsubscribe, which is included in each e-mail). This withdrawal has no effect on the legality of the data processing carried out up to that point.
When mailing the newsletter, we use (as part of our legitimate interest in a technologically perfect processing of our customer data and analysis pursuant to Art. 6 para. 1 (f) GDPR) the provider Brevo of the SendinBlue GmbH, Köpenicker Straße 126, 10179 Berlin.
Regarding the handling of your data by our newsletter provider, we refer you to the privacy policy of our newsletter-provider https://www.brevo.com/de/legal/privacypolicy/. Our newsletter provider will only use your data when mailing the newsletter and they will analyse that mailing on our behalf. In addition, our newsletter provider will only use your data to improve its own service. Our newsletter provider will not use the data to contact you directly or to pass on your data to third parties.
The mails used by our newsletter-provider include a "web beacon", which will inform our newsletter provider about the opening of the newsletter and/or the clicking on a link contained therein by you. As part of that process, information regarding your browser, your location and your IP address will be transmitted to our newsletter provider. This information will be used to optimise our communication with you.
Our newsletter provider will also use this data for purposes of analysis and optimisation of their own service, but only in pseudonymised form (meaning that your identification is not possible). But your data will not be used by the provider to contact you directly.
Your data remain stored as long as you are in our mailing list, as long as the storing is necessary to protect our rights or for other legitimate interests or if we are bound by law to keep your data longer.
Online calendar
Simply Meet
Based on our legitimate interest in a technologically perfect appointment planning and our company's design and optimization in an economically efficient manner in accordance with Art. 6 para. 1 (f) GDPR, we use the booking software simplymeet.me https://www.simplymeet.me, a service of Simply Book me Ltd, P. Makedonas Court, Gladstonos 30, Limassol 3040, Zypern, for booking appointments or courses.
When booking an appointment or a course, personal data is required and your IP address will be collected as part of the technological logging. Neither we nor our booking software will pass on this data to third parties and it only serves to organize appointments. The data will not be analyzed by our booking software and will be deleted a short time after the access, unless security reasons require a prolonged storage.
Data transfer will be encrypted, preventing third parties from reading your data at any time.
We also use our booking software to store the booked appointments with the data entered by you to be able to keep appointments and to deliver courses. The legal basis for that is either our legitimate interest in a smooth organization and planning of appointments and the organization of our company in an economic and efficient manner in accordance with Art. 6 para. 1 (f) GDPR or to process contractual data in accordance with Art. 6 para. 1 (b) GDPR.
We may also ask for your consent to evaluate us. That way we could provide you with better service based on your consent in accordance with Art. 6 para. 1 lit. a GDPR. You may withdraw this consent at any time and free of charge without any further formal requirements. Simply notify us, for example through the contact form or by using the unsubscribe link in each e-mail. This withdrawal of consent has no bearing on the legality of the data processing carried out up to that point.
More information about the data collected by our booking software and how they process your data can be found in the privacy policy of our booking software / https://simplymeet.me/de/policy .
Your data will remain stored as long as the reason for the appointment is still relevant, in particular as long as the storage is still necessary to perform the contract, to pursue our rights or for other legitimate interests of ours or as long as we are required by law to keep your data stored (for example by tax-law requirements on the keeping of records).
Videoconferences, Webinare and Onlinemeetings
Zoom
We use external communication providers (external providers or platforms for our video conferences, audio conferences, webinars or other online meetings and online communication), in this case the provider ZOOM Video Communications Inc., San Jose Office, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA. This is based either
- on our contractual or pre-contractual legal relationship in accordance with Art. 6 para. 1 (b) GDPR,
- on your consent if we have obtained that before (for example for a recording) in accordance with Art. 6 para. 1 (a) GDPR or
- on our legitimate interest in a technologically perfect online offering and its design and optimisation in an economically efficient manner pursuant to Art. 6 para. 1 (f) GDPR.
Each time you use our external communication provider, any data that you enter, indicate or show during the communication (in particular contractual data like name and e-mail, usage data like the browse used, visited websites, duration of the visit, referrer URL and your IP address, content data like audio and video communication and/or recordings, chat protocols, shared screen content) will be transmitted to the external communication provider and stored by them. We use settings that guarantee as much privacy as possible, and you can be careful about your privacy as well. For example, you can register with alias names or with one-time e-mail addresses or (partially) deactivate your transfer of audio and video.
When using this provider, it may happen that your data is transferred to the USA. However, we have ensured that your data is only transferred to the USA on the basis of a contract in accordance with the standard contractual clauses. According to the GDPR and the EuGH, this is a legal basis for the transfer of data to the USA. This applies in particular since the US Presidential Decree of 07.10.2022.
We have concluded an data processing agreement with this provider, according to which this provider will only process your data on our behalf within the scope of the GDPR and according to our instructions.
Your data will remain stored as long as necessary for the purposes of your consent, for performing the contract, to pursue our legal rights or for other legitimate interests of ours or as long as we are required by law to keep your information.
Neither we nor the external communication provider will pass on your data to third parties. Exceptions may be made for analysing the user date for service and security purposes as well as for marketing purposes of the external communication provider. For the further use of your data by the external communication provider, we refer you to their terms and conditions https://zoom.us/terms and the associated privacy policy https://zoom.us/privacy
Insofar as external communication providers store cookies or other trackers on your device, we refer you to our general information about dealing with cookies and deactivating them in this privacy policy.
Evaluation Sites
Proven Expert
In the context of our legitimate interest in a technically flawless online offer and its economically efficient design and optimization, we use, in accordance with. Article 6 (1) (f) GDPR, the evaluation portal Proven Expert of Expert Systems AG, Quedlinburger Str. 1, 10589 Berlin, Germany. This shows data about evaluations of our services by third parties on the Proven Expert portal on our website. By clicking on Proven Expert's representation on our website, you will find our reviews at Proven Expert with further information.
When you visit our website, the widget records your IP address, the time of the visit to the website and the browser used (access data) as with every call on the Internet. This data is not evaluated, is not merged with other data and later deleted. When you create a review, Proven Expert also records and stores your IP address, time of access, your email address and other information you provide at Proven Expert.
Further information on data processing at Proven Expert can be found in the data protection declaration of Expert Systems [https://www.provenexpert.com/de-de/datenschutzbedingungen/].
Payment providers
Mollie
If you chose one of the payment options of our payment provider Mollie, by Mollie B.V., Keizersgracht 126, 1015CW Amsterdam, Niederlande, https://www.mollie.com, the data entered by you during the ordering process will be transmitted to our payment provider to carry out the contractual payment.
In the course of the payment, the purchase data as bought goods or services, amount, billing adress and if applicable more data and the payment data entered by you – credit card number, owner, validity (month and year) and CVC of the credit card bank account or more payment related informations – will be transmitted to our payment provider. This data will only be stored as long as required for processing the payment (including the processing of possible return debits and debt collection) and for combating fraud. Longer storage may be required to adhere to statutory requirements or to investigate a specific case of fraud.
Detailed information about this and about the agencies used can be found in the privacy policy of our payment provider.
The legal basis for passing on your data to our payment provider is primarily the processing of your contractual data in accordance with Art. 6 para. 1 (b) GDPR as well as our legitimate interest in a technologically perfect online offering and its design and optimization in an economically efficient manner in accordance with Art. 6 para. 1 (f) GDPR.
Stripe
If you choose one of the payment options of our partner Stripe, provided by Stripe Payments Europe, Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, the data entered by you when ordering will be sent to Stripe in order to facilitate the contractual payment. Detailed information about this can be found in the privacy policy of Stripe:
https://stripe.com/privacy
The legal basis for passing on your data to Stripe is primarily the processing of your contractual data according to Art. 6 para. 1 (b) GDPR as well as our legitimate interest in a technologically perfect online offering and its design and optimisation in an economically efficient manner pursuant to Art. 6 para. 1 (f) GDPR.
CRM and Marketing
NoCRM
Based on the permission for processing of contractual data in accordance with Art. 6 para. 1 (b) as well as our legitimate interest in efficient customer management in accordance with Art. 6 para. 1 (f) GDPR, we use the CRM system no CRM, provided by noCRM der you don’t need a CRM SAS 3 avenue Antoine Pinay, 59510 Hem, France.
We have concluded a data-processing agreement with our CRM provider, according to which it will only process your information in accordance with our instructions. You will find more information about the data protection of our CRM provider at https://www.nocrm.io/de/privacy_policy.
Here, we store all information which you have provided to us in the process of negotiating or concluding a contract, in particular your name, your contact information, payment information as well as provided products or services, if applicable. Our CRM provider also allows us to analyse this date statistically and historically.
We will store this information as long as we use it for the performance of the contract (in particular the warranty period) or for the duration of a statutory requirement to store the data (in particular for tax-relevant data).
SendinBlue CRM
Based on the permission for processing of contractual data in accordance with Art. 6 para. 1 (b) as well as our legitimate interest in efficient customer management in accordance with Art. 6 para. 1 (f) GDPR, we use the CRM system Brevo provided by SendinBlue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.
We have concluded a data-processing agreement with our CRM provider, according to which they will only process your information in accordance with our instructions. You will find more information about the data protection of our CRM provider at https://www.brevo.com/de/legal/privacypolicy/.
Here, we store all information that you have sent us while negotiating or concluding a contract, in particular your name, your contact information, payment information as well as provided products or services, if applicable. Our CRM provider also allows us to analyse this date statistically and historically.
We will store this information as long as we use it for the performance of the contract (in particular the warranty period) or for the duration of a statutory requirement to store the data (in particular for tax-relevant data).
Various
Sentry
Based on our legitimate interest in a technologically flawless online presence and its economically efficient design and optimization according to Art. 6 para. 1 lit. f GDPR, we use the service Sentry, provided by Senry IO., Sentry 45 Fremont Street, 8th Floor, San Francisco, CA 94105, USA (hereinafter „Sentry“), for recording errors.
With Sentry, errors in the code can be collected, logged and analyzed for the purpose of system stability. For this purpose, Sentry also collects your usage data, such as your operating system, the software installed on your device, your IP address, your browser type, operating system or the previously visited website ('referring URL'). This data is collected by Sentry pseudonymously and does not allow us to identify you as a user.
This may result in the transmission of your data to the USA. However, we have ensured that your data is only transferred to the USA on the basis of a contract in accordance with the standard contractual clauses. According to the GDPR and the EuGH, this is a legal basis for the transfer of data to the USA. Furthermore this provider is certified according to the EU-US Data Privacy Framework. This means that the transfer of data to the USA is possible in a legally secure manner on the basis of the adequacy decision concluded on 10.07.2023.
We have concluded an data processing agreement with this provider, according to which this provider will only process your data on our behalf within the scope of the GDPR and according to our instructions.
For more information on Sentry's use of your data, please refer to Sentry's privacy policy at https://sentry.io/privacy/.
Businessmap
Für den Kundendienst verwenden wir im Rahmen unseres berechtigten Interesses an einem technisch einwandfreien und effizienten Online Angebot und seiner wirtschaftlich-effizienten Gestaltung und Optimierung gem. Art.6 Abs. 1 lit.f DSGVO die Kundendienst und Projektmanagement-Software „Businessmap“, sitzend in “84 "Aleksandar Stamboliyski" blvd., 4th floor, office 18, 1303 Sofia, Bulgariau201d.
Nähere Informationen zu den Datenschutzbestimmungen unserer Kundendienst-Software finden Sie unter https://businessmap.io/privacy-policy.
Werden wir über unsere Support-E-Mail Adresse kontaktiert, wird die E-Mail in businessmap.io weitergeleitet und die Kommunikation dort nachgehalten. So ist es möglich, unseren Kunden einen auf seine Bedürfnisse zugeschnittenen Service anzubieten.
Unsere Kundendienst-Software speichert die Kommunikation zu den Support Anfragen. Dadurch können Ihnen umfangreiche Ausführungen zu Ihrer Anfrage erspart werden und für die relevanten Mitarbeitenden transparent und nachvollziehbar gestaltet werden.
Built with Datenschutz Generator of https://easyrechtssicher.de
This is our current valid privacy policy from 29.01.2025
