DATA PROTECTION

YOUR DATA IS SAFE WITH US!

We take the protection of your personal data very seriously. Your data is protected in accordance with legal regulations. With the following declaration we would like to inform you about which data is collected for which purpose. If you have any questions about data protection, please contact us by phone on 49 2734 4239900 or by email: info@blue-corner.de. We will be happy to answer them at any time.

DATA PROCESSING ON THIS SITE

Every access to our website and every retrieval of a file stored on the website is automatically logged in server statistics. These are: browser type or version, operating system used, referrer URL (the previously visited page), host name of the accessing computer (IP address), time of the server request. This data is not personal and is deleted after a statistical evaluation.

COLLECTION, PROCESSING AND USE OF PERSONAL DATA

Personal data is only collected if you provide it voluntarily, for example when registering as a new customer or when providing your billing and shipping address. We use the data you provide without your separate consent solely to fulfill and process your order.

To fulfill the contract, we pass on your data to the shipping company commissioned with the delivery, insofar as this is necessary for the delivery of the ordered goods. To process payments, we pass on the payment data required for this to the credit institution commissioned with the payment and, if applicable, to the payment service provider commissioned by us or to the payment service you selected during the ordering process.

When registering as a new customer or when entering your customer data without registration and when specifying the billing and shipping address, you must provide the following personal data:

- Your email address

- A personal password

- Your title

- Your first and last name

- Your address (street, zip code and city, country)

As part of the customer registration process, you must provide the following information:

- Your email address

- A personal password

When registering as a new customer or when entering your customer data without registering, you have the option of providing the following data on a voluntary basis:

- your phone number

- your date of birth

- your company name

As part of a contact request, you must provide the following information:

- Your title

- Your first name and last name

- Your email address

- Your address (street, zip code and city, country)

This data will not be passed on to third parties.

Furthermore, 128-bit SSL encryption ensures that your data is transmitted securely.

USE OF SOCIAL PLUGINS

Our website offers so-called social plugins (“plugins”) from the social network Facebook (“provider”).

Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). An overview of Facebook’s plugins and what they look like can be found here:

https://developers.facebook.com/docs/plugins

Google is operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). An overview of Google’s plugins and what they look like can be found here:

https://developers.google.com/ /web/

Instagram is operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”). An overview of the Instagram buttons and their appearance can be found here:

http://blog.instagram.com/post/ 49 2734 4239900/introducing-instagram-badges

Pinterest is operated by Pinterest Inc., 635 High Street, Palo Alto, CA, USA. The link to Pinterest’s privacy policy can be found here:

http://about.pinterest.com/privacy/

In order to increase the protection of your data when you visit our website, the plugins are integrated into the page using the so-called "2-click solution" from epages. This integration ensures that when you access a page on our website that contains such plugins, no connection is established with the servers of Facebook, Google, Instagram and Pinterest. Only when you activate the plugins and thus give your consent to the data transfer does your browser establish a direct connection to the Facebook servers. The content of the respective plugin is then transmitted directly to your browser by the associated provider and integrated into the page. By integrating the plugins, the providers receive the information that your browser has accessed the corresponding page on our website, even if you do not have a profile with the corresponding provider or are not currently logged in. This information (including your IP address) is transmitted from your browser directly to a server of the respective provider in the USA and stored there.

If you are logged in to one of the social networks, the providers can directly assign the visit to our website to your profile on Facebook, Google , Instagram and Pinterest. If you interact with the plugins, for example by clicking the "Like" or " 1" button, the corresponding information is also transmitted directly to a server of the provider and stored there. The information is also published in the social network and displayed to your contacts there.

The purpose and scope of data collection and the further processing and use of the data by the providers as well as your rights and setting options for protecting your privacy can be found in the data protection information of the providers.

Facebook's privacy policy:

http://www.facebook.com/policy.php

Google's privacy policy: http://www.google.com/intl/de/ /policy/ 1button.html

Instagram's privacy policy:

 https://help.instagram.com/ 49 2734 4239900/

If you do not want Facebook, Google, Instagram and Pinterest to assign the data collected via our website directly to your profile in the respective service, you must log out of the relevant service before visiting our website. You can also completely prevent the loading of the plug-ins with add-ons for your browser, e.g. with the script blocker "NoScript" (http://noscript.net/).

SYSTEM SECURITY

All data is stored on a secure server. Only a few employees and those responsible for the technical support of the website are authorized to access it.

DATA PROCESSING WHEN REGISTERING FOR THE E-MAIL NEWSLETTER

If you subscribe to our newsletter, we will use the data required for this purpose or separately provided by you to regularly send you our email newsletter. You can unsubscribe from the newsletter at any time and can do so either via a link provided for this purpose in the newsletter, the newsletter subscription/unsubscribe page or by sending a message to the contact option described below or via our contact form.

USE OF ANALYTIC TOOLS

This website uses Google Analytics, a web analysis service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies", text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of the website is generally transferred to a Google server in the USA and saved there. However, if IP anonymization is activated on this website, Google will shorten your IP address beforehand within member states of the European Union or other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can prevent cookies from being saved by setting your browser software accordingly; However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by downloading and installing the browser plug-in available under the following link. The current link is

http://tools.google.com/dlpage/gaoptout?hl=de.

USE OF BING ADS/BING UNIVERSAL EVENT TRACKING (UET)

Our online offerings also use conversion tracking from Microsoft (Microsoft Corporation, One Microsoft Way, Redmond, WA 49 2734 4239900, USA). Microsoft Bing Ads places a cookie on your computer if you have accessed our website via a Microsoft Bing ad. Microsoft Bing and we can thus recognize that someone has clicked on an ad, been redirected to our website and reached a previously determined target page (conversion page). We only learn the total number of users who have clicked on a Bing ad and were then redirected to the conversion page. No personal information about the identity of the user is disclosed. If you do not wish to participate in the tracking process, you can also refuse the setting of a cookie required for this purpose - for example by using a browser setting that generally deactivates the automatic setting of cookies. Further information on data protection and the cookies used by Microsoft Bing can be found on the Microsoft website:

https://privacy.microsoft.com/de-de/privacystatement 

RIGHT TO INFORMATION

The stored personal data will of course be treated confidentially by Blue Corner. The determination, processing and use of the customer's personal data takes place in compliance with Blue Corner's data protection declaration. According to the Federal Data Protection Act, you have the right to free information about your stored data and, if necessary, the right to correct, block or delete this data.

IF APPLICABLE, YOU HAVE GRANTED THE FOLLOWING CONSENT AFTER PLACING YOUR ORDER:

"I would like to rate the purchase "later" and be reminded by Trusted Shops to submit a rating once after 7 days by email. I can revoke my consent at any time." If you have given us your express consent as stated above, we will send your email address to Trusted Shops GmbH, Subbelrather Str. 15c, 50823 Cologne, for the request to submit a dealer rating of the service purchased via the Trusted Shops dealer rating system, so that they can send you an email after 7 days to remind you to submit a rating. This consent can be revoked at any time with effect for the future (e.g. by email to info@blue-corner.de).

USE OF COOKIES

In order to make visiting our website more attractive and to enable the use of certain functions, we use so-called cookies on various pages. You can set your browser so that you are informed when cookies are placed and decide individually whether to accept them or to exclude the acceptance of cookies in certain cases or in general. If you do not accept cookies, the functionality of our website may be restricted.

Privacy PolicyWe are pleased that you are interested in our website. The protection of your privacy is very important to us. Below we will inform you in detail about how we handle your data.

Storage of access data in server log filesYou can visit our websites without providing any personal information. We only store access data in so-called server log files, such as the name of the requested file, the date and time of retrieval, the amount of data transferred and the requesting provider. This data is evaluated solely to ensure trouble-free operation of the site and to improve our offering and does not allow us to draw any conclusions about you personally.

Data collection and use for contract processing and when opening a customer accountWe collect personal data when you voluntarily provide it to us as part of your order, when you contact us (e.g. via contact form or email) or when you open a customer account. Which data is collected can be seen from the respective input forms. We use the data you provide to process the contract and process your inquiries. After the contract has been fully processed or your customer account has been deleted, your data will be blocked for further use and deleted after the tax and commercial retention periods have expired, unless you have expressly consented to further use of your data or we reserve the right to use the data in any other way that is permitted by law and about which we will inform you below. Your customer account can be deleted at any time and can be done either by sending a message to the contact option described below or via a function provided for this purpose in the customer account.

Data transfer for contract fulfillmentTo fulfill the contract, we pass on your data to the shipping company commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods. To process payments, we pass on the payment data required for this to the credit institution commissioned with the payment and, if applicable, to the payment service provider commissioned by us or to the payment service you selected in the ordering process.

Use of data when registering for the e-mail newsletterIf you subscribe to our newsletter, we will use the data required for this purpose or separately provided by you to regularly send you our e-mail newsletter. You can unsubscribe from the newsletter at any time and can do so either by sending a message to the contact option described below or via a link provided for this purpose in the newsletter.

Use of data for postal advertising and your right to objectIn addition, we reserve the right to store your first and last name, your postal address and - if we have received this additional information from you as part of the contractual relationship - your title, academic degree, year of birth and your professional, industry or business name in summarized lists and to use them for our own advertising purposes, e.g. to send you interesting offers and information about our products by post. You can object to the storage and use of your data for these purposes at any time by sending a message to the contact option described below.

Use of for web analysis This website uses technologies from () to collect and store data from which usage profiles are created using pseudonyms. These usage profiles are used to analyze visitor behavior and are evaluated to improve our offering and tailor it to needs. Cookies can be used for this purpose. These are small text files that are saved locally on the visitor's device and enable recognition when they visit our website again. The pseudonymized usage profiles are not merged with personal data about the bearer of the pseudonym without separate, explicit consent. You can object to the collection and storage of data at any time with effect for the future by .

Use of social plugins from Facebook using the "2-click solution" Our website uses so-called social plugins ("plugins") from the social network Facebook. This service is offered by the companies Facebook Inc. ("Provider"). Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). An overview of Facebook's plugins and what they look like can be found here: https://developers.facebook.com/docs/plugins/ In order to increase the protection of your data when you visit our website, the plugins are integrated into the page using a so-called "2-click solution". This integration ensures that when you access a page on our website that contains such plugins, no connection is established with the Facebook servers. Only when you activate the plugins and thus give your consent to the data transfer does your browser establish a direct connection to the Facebook servers. The content of the respective plugin is sent directly to your browser and integrated into the page. By integrating the plugin, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook profile or are not currently logged in. This information (including your IP address) is sent directly from your browser to a Facebook server in the USA and stored there. If you interact with the plugin, for example by clicking the "Like" button, the corresponding information is also sent directly to a Facebook server and stored there. The information is also published on Facebook and displayed to your contacts there. The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your related rights and setting options to protect your privacy can be found in Facebook's privacy policy at http://www.facebook.com/policy.php

Use of social plugins from Twitter using the "2-click solution"Our website uses so-called social plugins ("plugins") of the microblogging service Twitter. This service is offered by the companies Twitter Inc. ("provider").Twitter is operated by Twitter Inc., 1355 Market St, Suite 900, San Francisco, CA 94103. An overview of the Twitter buttons and their appearance can be found here: https://twitter.com/about/resources/buttonsTo increase the protection of your data when you visit our website, the plugins are integrated into the page using a so-called "2-click solution". This integration ensures that when you access a page on our website that contains such plugins, no connection is established with the Twitter servers. Only when you activate the plugins and thus give your consent to the data transmission does your browser establish a direct connection to the Twitter servers. The content of the respective plug-in is sent directly to your browser and integrated into the page. By integrating the plug-in, Twitter receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Twitter account or are not currently logged in. This information (including your IP address) is sent directly from your browser to a Twitter server in the USA and stored there. If you interact with the plug-in, for example by pressing the "Tweet" button, the corresponding information is also sent directly to a Twitter server and stored there. The information is also published on Twitter and displayed there on your Twitter account. For the purpose and scope of data collection and the further processing and use of the data by Twitter, as well as your related rights and setting options to protect your privacy, please refer to Twitter's privacy policy at https://twitter.com/privacy

Rating reminder by email If you have given us your express consent to do so during or after your order by activating a corresponding checkbox or clicking a button provided for this purpose, we will use your email address to remind you to submit a rating of your order using the rating system we use. This consent can be revoked at any time by sending a message to the contact option described below.

Right to information and contact options You have the right to free information about the data we have stored about you and, if applicable, the right to correct, block or delete this data. If you have any questions about the collection, processing or use of your personal data, information, correction, blocking or deletion of data, or if you wish to revoke consent given or object to a specific use of data, please contact us directly using the contact details in our legal notice.

This website uses technologies from etracker GmbH (www.etracker.de) to collect and store data in an anonymized form for marketing and optimization purposes. User profiles are created from this data under a pseudonym. Cookies can be used for this purpose, but they only collect and store data in pseudonymous form. The data is not used to personally identify visitors to this website and is not merged with data about the bearer of the pseudonym. The collection and storage of data can be objected to at any time with effect for the future.

Agreement on order processing - Technical and organizational security measures according to Art 32 GDPR Version 1.01. Confidentiality (Art. 32 para. 1 lit. b GDPR)1.1 Access controlUnauthorized persons must be denied access to rooms in which data processing systems are housed.Determination of security areas● Implementation of effective access protection● Logging of access● Determination of persons authorized to access● Management of personal access authorizations● Accompanying external personnel● Monitoring of rooms1.2 Access controlData processing systems must be prevented from being used by unauthorized persons.● Determination of protection requirements● Access protection● Implementation of secure access procedures, strong authentication● Implementation of simple authentication via username password● Logging of access● Monitoring of critical IT systems● Secure (encrypted) transmission of authentication secrets

● Lockout in case of failed attempts/inactivity and process for resetting locked access codes

● Prohibition of saving function for passwords and/or form entries (server/clients)

● Determination of authorized persons

● Management and documentation of personal authentication media and access authorizations

● Automatic access lock and manual access lock

1.3 Access control

Only data for which access authorization exists can be accessed. Data can be processed, used

and after storage, they cannot be read, copied, changed or removed without authorization.● Creation of an authorization concept● Implementation of access restrictions● Granting of minimal authorizations● Management and documentation of personal access authorizations● Avoidance of the concentration of functions1.4 Purpose controlIt must be ensured that data collected for different purposes can be processed separately.● Data economy when dealing with personal data● Separate processing of different data sets● Regular purpose control and deletion● Separation of test and development environments1.5 Data protection-friendly default settingsIf data is not required to achieve the intended purpose, the technical default settings are set so that data is only collected, processed, passed on or published by an action of the data subject.2. Integrity (Art. 32 para. 1 lit. b GDPR)2.1 Transfer controlThe aim of transfer control is to ensure that personal data cannot be read, copied, changed or removed without authorization during electronic transmission or during transport or storage on data carriers, and that it can be checked and determined to which locations a transfer of personal data

Determination of the authorities/persons authorized to receive/pass on data● Examination of the legality of the transmission abroad

● Logging of transmissions according to the logging concept

● Secure data transfer between server and client

● Securing the transmission in the backend● Secure transmission to external systems● Risk minimization through network separation● Implementation of security gateways at the network transfer points

● Hardening of backend systems

● Description of the interfaces

● Implementation of machine-to-machine authentication

● Secure storage of data, including backups

● Secure storage on mobile data storage devices

● Introduction of a disk management process

● Process for collection and disposal● Data protection-compliant deletion and destruction procedures● Maintenance of deletion logs

2.2 Input control

The purpose of the input control is to ensure that it can be subsequently checked and determined whether and by whom

personal data have been entered into data processing systems, changed or removed.

● Logging of entries

● Documentation of input authorizations

3. Availability, resilience, disaster recovery

3.1 Availability and resilience (Art. 32 para. 1 lit. b GDPR)

● Fire protection

● Redundancy of primary technology

● Power supply redundancy

● Redundancy of communication links

● Monitoring

● Resource planning and provisioning

● Prevention of system-damaging abuse

● Data backup concepts and implementation

● Regular inspection of emergency facilities

3.2 Disaster recovery – rapid recovery after an incident (Art. 32 para. 1 lit. c GDPR) ● Emergency plan ● Data backup concepts and implementation 4. Data protection organization ● Determination of responsibilities ● Implementation and control of suitable processes ● Reporting and approval process ● Implementation of training measures ● Commitment to confidentiality ● Regulations for internal allocation of tasks ● Observance of functional separation and allocation ● Introduction of a suitable representative regulation

5. Order control

The aim of order control is to ensure that personal data processed on behalf of the controller are only

can be processed in accordance with the client's instructions.

● Selection of additional contractors based on suitable guarantees

● Conclusion of an agreement for order processing with other contractors

● Conclusion of an agreement for order processing with STRATO

6. Procedures for regular review, assessment and evaluation (Art. 32 para. 1 lit. d GDPR; Art. 25 para. 1

GDPR)● Information security management according to ISO 27001● Process for evaluating technical and organizational measures● Security incident management process● Conducting technical audits

https://www.ionos.de/terms-gtc/terms-privacy/