Privacy Policy

This privacy policy is intended to inform you how we process personal data and to explain your rights to you. We are conscious of the significance of processing of personal data for you as a data subject and we duly observe all relevant legal requirements. The protection of your personal privacy is of the utmost importance for us in this respect. We process your personal data in compliance with the  Datenschutzgrundverordnung (“DSGVO”) [General Data Protection Regulation]  as well as the data protection requirements mandated by state law.

Name and contact details of the responsible party and its representative

Cosmonauts & Kings GmbH
Alt-Moabit 103
D-10559 Berlin
Telephone: (+49) 030 420 997 14
E-Mail: houston@cosmonautsandkings.com
Authorized representative managing directors: Jochen König, Juri Schnöller
Contact details of Data Protection Officer: datenschutz@cosmonautsandkings.com

Definitions
This privacy policy uses the definitions in the Datenschutzgrundverordnung (“DSGVO”)

Personal data” means all information which relates to an identified or identifiable natural person (hereafter “data subject”); an identifiable natural person is one who may, directly or indirectly, be identified, in particular by means of the attribution of an identifier such as a name, of an identification number, of location data, of an online identifier, or of one or more particular characteristics which are the reflection of the physical, physiological, genetic, psychological, economic, cultural or social identity of the said natural person.

Processing” means any operation or set of operations carried out on personal data, whether by automated means or not, such as the collection, capture, organization, arrangement, recording, adaptation or alteration,  retrieval, consultation, use, disclosure by  transmission, dissemination or other form of making available, alignment or combination, blocking, erasure or destruction.

Restriction on processing” means the labelling of stored personal data with the aim of restricting their future processing.

Profiling” means any type of automated processing of personal data which entails the said personal data being used to assess certain personal characteristics which relate to a natural person, in particular to analyze or predict characteristics relating to work performance, economic situation, health, personal preferences, interests, reliability, behaviour, residence or change of location of the said natural persons.

Pseudonymisation” means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without reference to additional information, provided that the additional information is separately stored and is subject to technical and organizational measures guaranteeing that the personal data are not attributed to an identified or identifiable natural person.

Filing system” means any structured collection of personal data which is accessible according to defined criteria, regardless of whether the collection is arranged centrally, locally, or according to functional or geographic factors.

Responsible person” means the natural or legal person, authority, body or other entity, which, alone or together with others, takes decisions about the purposes and means of processing of personal data; if the purposes and means of the said processing are prescribed by European Union law or by national law of the Member States, provision may be made for the responsible person and the particular criteria for his appointment in accordance with European Union or national law.

Processor” means a natural or legal person,  authority, body or other entity, which processes the said personal data on behalf of the responsible person.

Recipient” means a natural or legal person,  authority, body or other entity, to which personal data are disclosed, whether it is a third party or not. Authorities who may potentially receive personal data when undertaking certain investigations pursuant to European Union or national law of the Member States shall not be deemed to be recipients; the processing of the data by the said authorities shall be carried out in accordance with the applicable data protection regulations according to the purposes of the processing.

Third party” means a  natural or legal person,  authority, body or other entity, other than the data subject, the responsible person, the processor and the persons who are authorized to process the personal data under the direct responsibility of the responsible person or processor.

Consent” means the data subject’s freely given, case-specific, informed and unequivocal indication of his or her wishes in the form of a declaration or other unambiguous confirmatory action by which the data subject signifies his or her agreement to personal data relating to him or her being processed.

Processing operations
We collect and process the following personal data about you: contact and address information if you have provided us with your contact information, online identifiers (e.g. your IP address, browser type and browser version, the related operating system, the referrer URL, the IP address, the data name, the access status, the data volume transferred, the date and time of the server request), payment information if you have provided this to us, social media identifiers.

Processing purposes
We process your data for the following purposes:

  • for responding to your request for contact,
  • for executing contracts with you
  • for advertising purposes,
  • for quality control and
  • for our statistics.

Legal basis for data processing
Processing of your data is on the following legal bases:

  • Your consent pursuant to Art. 6 Para. 1 subpara. a) DSGVO,
  • For the performance of a contract with you pursuant to Art. 6 Para. 1 subpara. b) DSGVO
  • For the fulfilment of  legal duties pursuant to Art. 6 Para. 1 subpara. c) DSGVO or
  • because of a legitimate interest pursuant to Art. 6 Para. 1 subpara. f) DSGVO.

Legitimate interests
Where we rely on legitimate interests within the meaning of Art. 6 Para. 1 subpara. f) DSGVO for the processing of your personal data, these are for the improvement of our service, protection against misuse and the performance of our statistical operation.

Data sources
We receive the data from you (including about the devices you use). Should the personal data not be collected from you directly, we shall also inform you of the source of the personal data and, where applicable, whether they come from a publicly accessible source.

Recipients or categories of recipients of personal data
In processing your data we work with the following service providers, who have access to your data: providers of web analysis tools and social media platforms. Data is transmitted to third countries outside the European Union. This takes place on the basis of legally prescribed contractual rules which are intended to ensure suitable protection for your data and which you may inspect on request.

Duration of storage
We only store your personal data for as long as is necessary to achieve the purpose of the processing or if the storage is subject to a legal retention period. If you have consented to processing we store your data only until you withdraw your consent. If we need the data for the performance of a contract we store your data only for the duration of the contractual relationship with you or if legal retention periods apply. If we are using the data on the basis of a legitimate interest we store your data only so long as your interest in deletion or anonymisation does not take precedence.

Your rights
You have – in part on certain conditions – the right to require information about the processing of your data free of charge as well as to receive  a copy of your personal data. You may require information about, among other things, the purposes of processing, the categories of personal data which are processed, the recipients of personal data (if transmission takes place), the duration of storage or the criteria for the determination of such duration; to correct your data. If your personal data are incomplete you have the right, having regard to the purposes of processing, to make your data complete; to have  your data deleted or to have it blocked. Reasons for a claim to deletion or blocking could be, among other things, the withdrawal of the consent underlying the processing, the data subject objects to the processing, the personal data were unlawfully processed; to restrict processing; to object to the processing of your data; to withdraw your consent to the processing of your data in the future and to make a complaint to the relevant regulatory authority about  unauthorized processing.

Requirement or obligation to provide data
The provision of data is not required or obligatory unless this is expressly specified at collection. Such an obligation may arise by reason of legal requirements or contractual provisions.

Further information about data protection

Data security
We have taken comprehensive technical and organizational measures to secure your data against possible dangers such as unauthorized log-in or access, unauthorized use, alteration or dissemination as well as against loss, destruction or misuse. To protect your personal data during transmission from unauthorized access by third parties we secure the data transmission where necessary by SSL encryption. This is a standardized encryption process for online services, in particular for the web.

Logfiles
Every time our internet sites are accessed, usage data are transmitted by the relevant internet browser and stored in protocol files, so-called logfiles. The records stored in this way contain the following data: domain from which the user accessed the website, date and time of the call-up, IP address of the  computer having access, websites which the user visits as part of the offer, the transmitted data volume, browser type and version, operating system used, name of the internet service provider, report as to success of the call-up. These logfile records are analyzed in an anonymised form to improve services and make them more user-friendly, to find and rectify mistakes and to regulate server capacity.

Cookies
This website uses so-called cookies. A cookie is a text file with an identification number which, together with the data actually requested, is transmitted to and placed on the computer of the user during use of the website. The file is kept there in readiness for subsequent access and is used to authenticate the user. As cookies are just simple files and not executable programmes, they pose no risk to the computer. Depending on the user’s chosen settings for the internet browser, cookies are accepted automatically. The settings can however be changed and the storage of cookies can be disabled or adjusted so that the user is notified as soon as a cookie is placed. If the use of cookies is disabled, it may however be the case that some website functions may not be available or restricted. You can at any time prevent the placement of cookies by our internet site by adjusting the settings accordingly on the internet browser used and forbid the placement of cookies permanently. Cookies that are already in use can be deleted at any time by an internet browser or software programme.

MailChimp
We use the software MailChimp for the creation and distribution of newsletters. MailChimp’s operator is the company The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA. When you subscribe to our newsletter via our website you confirm membership by email to a MailChimp email list. MailChimp stores the date of entry, your IP address, your email address your name, your physical address as well as demographic information such as language and location. When you sign up for our newsletter you transmit the said personal data and give us the right to contact you by email. We use the data stored on registration for the newsletter exclusively for our newsletter and assuring the MailChimp functions (e.g. analysis of the newsletter) and do not pass them on. MailChimp also shares information with third party suppliers in order to provide a better service. MailChimp also shares  some data with the advertising partners of third party suppliers in order to understand customers’ interests and concerns better so that more relevant content and targeted advertising can be provided. MailChimp can ascertain whether an email has arrived, whether it has been opened and whether links have been clicked on by the use of so-called “web beacons” (these are small graphics in HTML emails). All this information is stored on the MailChimp servers. MailChimp is additionally permitted to use these data for the improvement of its own services. This means, for example, that distribution can be optimized technically or the location (country) of the recipient can be ascertained.

Pipedrive Leadbooster
We use the “Leadbooster” sales bot from the company Pipedrive OÜ, registered office Mustamäe tee 3a, 10615 Tallinn, Estonia in order to give potential customers the opportunity to get in touch with us easily by entering their contact details. In so doing, names and emails addresses and, if applicable, further personal data are transmitted. By entering the data in the chatbot and submitting it to Cosmonauts & Kings you agree that we may contact you for the purpose of establishing a possible business relationship. We store and process the data transmitted in accordance with the Datenschutzgrundverordnung and use this exclusively for making contact and offer preparation as well as for the improvement of our service. The data are transmitted to the MailChimp company in the process, with the  help of which we organize the distribution of the email and there is no further transmission to third parties beyond this.

Google Analytics
We use Google Inc.’s Google Analytics service. This service allows us to analyze the use of our internet sites and deploys cookies for this purpose. For this purpose the information generated by cookies such as your anonymised IP address is transmitted on our behalf to a Google Inc. server in the USA, stored there and analyzed. Because on this website Google Analytics was installed by the code “gat._anonymizeIp();”. This ensures the anonymised collection of IP addresses. The anonymisation of your IP address is usually achieved by the abbreviation of your IP address by Google Inc. within the European Union or in other contracting states of the European Economic Area (EEA). In exceptional cases your IP address will be transmitted to a Google Inc. server in the USA and only anonymised once there. If your IP address has been transmitted in this way, it will be kept separately from other Google Inc. data. The Google Analytics advertising function uses remarketing and reports on performance by demographic characteristics and interests. These processes are intended to align advertising measures more closely to the interests of the relevant user with the help of information about user behaviour.  For remarketing,  personalized advertising measures can be placed on other websites based on the surfing behaviour of the user on this website. The advertising media may contain products which the user has previously viewed on the website. If you have agreed that your Google web and app browser history is connected with your Google account and information from your Google account is used for the personalization of advertisements, Google uses these data for remarketing across all devices. You can object to the recording of your data by Google Analytics at at any time. You have the following options in so doing:

Most browsers accept cookies automatically. However, you can prevent the use of cookies through the settings on your browser; if you do this you may not be able to use all functions on the website, You will have to change the settings separately on every browser you use.

Furthermore, you can prevent the collection and processing of these data by Google Inc. by downloading and installing the browser-ad-on available via the following link:

https://tools.google.com/dlpage/gaoptout?hl=de.

Alternatively, or for browsers on mobile devices, please click on the following Link: Deactivate Google Analytics. An opt-out cookie will be placed on your device for our internet sites with effect for your browser in use at the time. If you delete your cookies in that browser you must click on this link again. You can find more detailed information about the conditions of use and data protection at https://policies.google.com/?hl=de.

Google Maps
We use Google Maps (API) by Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) on our website. Google Maps is a web service showing interactive (country) maps to represent geographic information. By using this service our location is disclosed to you and any access is facilitated. As soon as you call up the subpages into which the Google Maps map is integrated, information about your use of our website (e.g. IP address) is transmitted to the Google server in the USA and stored there. This happens regardless of whether Google provides a user account into which you are logged in or whether there is no user account at all. If you are logged in with Google your data will be attributed directly to your account. If you do not wish for this attribution to your Google profile, you must log out before the button  is activated. Google stores and analyses your data as a usage profile (even for users who are not logged in). Such  analysis takes place  in particular pursuant to Art. 6 Para.1 subpara.f DSGVO based on Google’s legitimate interests in the insertion of personalized advertisements, market research, and/or needs-based design of its website. You have the right to object to the construction of this user profile and you must exercise this right against Google. Detailed information about data protection in connection with Google Maps can be found on Google’s internet site (“Google Privacy Policy”): http://www.google.de/intl/de/policies/privacy/

Google AdSense
We use Google AdSense. This is a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA by which advertisements can be integrated on internet sites. Google AdSense uses so-called cookies. These cookies are files. Google can analyse your use of this internet site through storage of the cookies on your computer. Google AdSense also uses so-called web beacons. These are invisible graphics. By using them Google can analyse information, such as the clicks on this website for example or the traffic on another. The said information, your IP address and the delivery of advertising formats are transmitted to Google’s servers in the USA and stored there. All this information can potentially be passed on by Google to third parties if this is required as a matter of law or if third parties are engaged by Google to undertake this data processing. However, Google will not combine your IP address with other stored data of yours. You may prevent the said cookies being stored on your computer. You must configure the settings on your internet browser accordingly. It is possible then that the use of this internet site is restricted for you. By use of the website you signify your agreement with the use of the data collected about you by Google in the said manner and for the said purpose.

Social Media PlugIns (Facebook, Instagram, Linkedin)
Plugins of the social network  Facebook, supplier Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA, of the social network Instagram, supplier  Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA,  and of the social network  Linkedin, supplier LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA are integrated on our site. You will recognise the plugins by the logo of the relevant network or by the “Like” button on our site. When you visit our sites, a  direct connection is created between your browser and the server of the relevant network via the plugin.  The suppliers receive information that you and your IP address have visited our site. If you click on the Facebook “Like” button while you are logged into your Facebook account, you can link the contents of our sites on your Facebook profile. In this way Facebook can attribute your visit to our site to your user account. We advise that we as supplier of the site receive no information about the content of the transmitted data nor of its use by the social networks. You may find further information on this in the privacy policies at: http://de-de.facebook.com/policy.php, http://instagram.com/about/legal/privacy/, https://www.linkedin.com/legal/privacy-policy?_l=de_DE.

 

Version of this privacy policy

February 2020

We reserve the right to change this privacy policy at any time with future effect.