Privacy Policy

The following Privacy Policy informs you about the collection of personal data (hereinafter referred to as “Data”) when using our website. Personal data is all data that can be related to you personally, such as name, address, email addresses or user behaviour.

Our Privacy Policy is structured as follows:

I. Information about us as the controller
II. Your rights
III. Information on data collection
IV. Visit our social media channels
V. Data processing at “myostyle events”

I. Information about us as the controller

The data controller pursuant to Art. 4 para. 7 of the EU General Data Protection Regulation (DSGVO) is
myostyle GmbH
represented by the Managing Director Diba Nazar-Czaplinski
Darmstädter Landstraße 125
60598 Frankfurt am Main, Germany

Phone: +49 69 2475582-0
Email: info@myostyle.de

Data protection officer:
You can reach our data protection officer at datenschutz@myostyle.de or our postal address by including the line “the data protection officer” in your mail.

II. Your rights

1. You have the right:

  • Under Art. 15 of the GDPR to request information about your personal data processed by us. In particular, you may request information about the purposes of the processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right of rectification, erasure, restriction of processing or to object, the existence of a right of appeal, the origin of your data if it has not been collected by us, as well as the existence of an automated decision-making process including profiling and, if applicable, meaningful information on its details;
  • Pursuant to Art. 16 of the GDPR, to demand immediate correction of incorrect or incomplete personal data stored by us;
  • Pursuant to Art. 17 of the GDPR, you have the right to demand the deletion of your personal data stored by us, unless processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation for reasons of public interest or for the assertion, exercise or defence of legal claims;
  • Pursuant to Art. 18 of the GDPR, you have the right to request the restriction of the processing of your personal data insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you refuse its deletion, and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have objected to the processing pursuant to Art. 21 of the GDPR;
  • Pursuant to Art. 20 of the GDPR, you to receive the personal data you have provided to us in a structured, common and machine-readable format or to request transmission to another responsible party;
  • Pursuant to Art. 7 (3) of the GDPR, to revoke your consent to us at any time. As a result, we may no longer continue processing the data based on this consent in the future and,
  • Pursuant to Art. 77 DSGVO, complain to a data protection supervisory authority about the processing of your personal data by us.

2. Right to object

Insofar as we base the processing of your personal data on the balance of interests, you may object to the processing. This is the case if, in particular, the processing is not necessary for the performance of a contract with you, as set out by us in the following part of the Privacy Policy. When exercising such an objection, we will ask you to explain the reasons why we should not process your personal data in the way we have done so. In the event of your justified objection, we will examine the merits of the case and either discontinue or adapt the data processing or show you our compelling legitimate grounds on the basis of which we will continue the processing.

You may of course object to the processing of your personal data for advertising purposes at any time. The best way to exercise your objection to advertising purposes is to contact us using the contact details provided above.

III. Information on data collection

Collection of personal data when visiting our website

a) When simply using our website, we only collect the personal data that your browser transmits to our server. We use the services of the web hosting provider Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany, in order to ensure our website is secure and efficient. A data processing agreement was concluded for this purpose. If you wish to view our website, we collect the following data, which are technically necessary for us to display our website to you and to guarantee stability and security:

  • (pseudonymised) IP address of the requesting computer, as well as device ID or individual device identifier and device type,
  • name of the file accessed and amount of data transferred, as well as date and time of access,
  • notification about successful access,
  • requesting domain,
  • description of the type of Internet browser used and, if applicable, the operating system of your terminal device, as well as the name of your access provider,
  • your browser history data and your standard web log information,
  • location data, including location data from your mobile device. Please note that most mobile devices allow you to control or disable the use of location services in the settings menu of the mobile device.

b) Once you have left our website, your IP address will be stored for a maximum of seven days for the purpose of recognising and warding off attacks; all other data listed will be stored in anonymised form and deleted after 6 weeks at the latest.

c) Art. 6 (1)1 lit. f of the GDPR serve as the legal basis. Our legitimate interest in collecting the data is based on ensuring a smooth connection and comfortable use of the website, evaluating system security and stability whilst optimising the IT structure.

The use of cookies

(1) In addition to the above-mentioned data, we use technical aids for various functions when you use our website, in particular cookies, which may be stored on your terminal device. When you access our website and at any time later, you have the choice of whether you generally allow cookies to be set or which individual additional functions you would like to select. You can make changes in your browser settings or via our Consent Manager.

(2) Cookies are text files or information in a database that are stored on your hard drive and assigned to the browser you are using so that certain information can flow to the entity that sets the cookie. Cookies cannot execute programs or transfer viruses to your computer but are primarily used to make the Internet offer faster and more user-friendly. This website uses the following types of cookies, whose functioning and legal basis of which we explain below:

  • Transient cookies: Such cookies, especially session cookies, are automatically deleted when the browser is closed or by logging out. They contain a session ID. In this way, various requests from your browser can be assigned to the joint session and your computer can be recognised when you return to our website.
  • Persistent cookies: Such cookies are automatically deleted after a predefined period of time which varies depending on the cookie. You can view the cookies set and the runtimes at any time in the settings of your browser and delete the cookies manually.

(3) Mandatory functions that are technically necessary for displaying the website: The technical structure of the website requires us to use technologies, in particular cookies. Without these technologies, our website cannot be displayed (completely correctly) or the support functions could not be enabled. These are basically transient cookies that are deleted after the end of your website visit, at the latest when you close your browser. You cannot opt out of these cookies if you wish to use our website. The individual cookies can be seen in the Consent Manager. c) Art. 6 (1)1 lit. f of the GDPR serve as the legal basis for this type of data processing.

(4) Optional cookies when you provide your consent: We only set various cookies once you have provided your consent which you can select on your first visit to our website via the cookie consent tool. The functions are only activated in the event of your consent and may serve in particular to enable us to analyse and improve visits to our website, to make it easier for you to use it via different browsers or terminal devices, to recognise you when you visit, or to serve advertising. c) Art. 6 (1)1 lit. f of the GDPR serve as the legal basis for this type of data processing. You may revoke your consent at any time without affecting the permissibility of the processing until the revocation.

The functions we use, which you can select and revoke individually via the Consent Manager, are described below.

Use of our online shop

(1) If you wish to place an order in our online shop, it is necessary for the conclusion of the contract that you provide your personal data, which we require for the purpose of processing your order. Mandatory information required for processing contracts is marked separately, other information is voluntary. Art. 6 (1)1 lit. b of the GDPR serve as the legal basis.

If you wish, you can create a customer account through which we can save your data for future purchases. When you create an account under "My account", the data you provide will be stored revocably. You can always delete all other data, including your user account, in the customer area.

We may also process the data you provide to inform you about other interesting products from our portfolio or to send you emails with technical information.

(2) We are obliged by commercial and tax law to store your address, payment and order data for a period of ten years. However, we restrict processing after three years, i.e. from this point onwards your data will only be used to comply with legal obligations.

(3) To prevent unauthorised access by third parties to your personal data, the ordering process is encrypted using TLS technology.

(4) Your payment data will be transmitted either to our principal bank or to your chosen payment service provider, depending on the payment method you have selected. The payment service provider is responsible for your payment data. Data will be passed on in accordance with Art. 6 (1) 1 lit. b of the GDPR and only insofar as this is necessary for payment processing. We use the following payment service providers:

  • PayPal

    If you select PayPal as a payment method on our pages, the amount to be paid by you as well as your first and last name, address, email address, telephone number and IP address will be forwarded to PayPal (PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg) in order to authorise the payment to us vis-à-vis PayPal. You will need a PayPal account for this. In addition, PayPal offers the option of processing virtual payments via credit cards if a user does not have a PayPal account.

    For the payment methods credit card via PayPal, direct debit via PayPal, PayPal reserves the right to obtain a credit report in order to ensure your willingness and ability to pay. This corresponds to the legitimate interest of PayPal (pursuant to Art. 6 (1) lit. f of the GDPR) and serves for executing the contract (pursuant to Art. 6 (1)lit. b of the GDPR). For this purpose, your data (name, address and date of birth, bank account details) will be passed on to credit agencies. We have no influence on this process and only receive the result of whether the payment has been made, rejected or is pending verification.

    Further information on data protection as well as on objection and removal options vis-à-vis PayPal can be found at: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

  • Klarna

    If you use the payment service provider Klarna, Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden, email: inkorg@klarna.se
    Location Germany: Klarna Bank AB (publ), Chausseestraße 117, 10115 Berlin, email: sicherheit@klarna.de, we will transmit your order data to Klarna accordingly. You can find general information about Klarna here: https://www.klarna.com/at/.

  • Stripe

    You have the option of processing the payment transaction via the payment service provider Stripe, ℅ Legal Process, 510 Townsend St., San Francisco, CA 94103 (Stripe).
    In this context, the following personal data is passed on to Stripe Name, E-mail Address, Customer Number, Order Number, Bank Details, Credit Card Data, Credit Card Validity Period, Credit Card Verification Number (CVC), Date and Time of Transaction, Transaction Amount, Name of Provider, Location, Purchase History, as well as for the transaction technical cookies in the payment process integration.

    On the basis of the performance of the contract (Art. 6 para. 1 sentence 1 lit. b GDPR), the acceptance of cookies may require your consent (Art. 6 para. 1 sentence 1 lit. a GDPR) for the use of the service, insofar as this is necessary.

    Stripe stores the data for the duration of the service provision in order to fulfill legal obligations.

    Stripe has implemented Compliance Measures for International Data Transfers. We have concluded an order processing agreement and the new EU standard contractual clauses with Stripe. Furthermore, Stripe is registered in the selfcertification mechanism of the EU-US Data Privacy Framework DPF and has a valid DPF certification (adequate level of protection of a data transfer to the USA). See: https://www.dataprivacyframework.gov/s/participant-search/participantdetail? id=a2zt0000000TQOUAA4&status=Active

    Further information on Data Processing at Stripe can be found here: https://stripe.com/at/privacy

The above-mentioned payment service providers may conduct credit checks. The credit report may contain score values (probability values). Insofar as score values are included in the result of the credit report, they have their basis in a scientifically recognised mathematical-statistical procedure. The result of this procedure is used to guarantee the provision of the respective payment method on the basis of a statistical payment default probability. Address data, among other things, are included in the calculation of the score values.

(5) Another recipient of your data is our shipping service provider UPS (United Parcel Service Deutschland Inc. & Co. OHG, Görlitzer Straße 1, 41460 Neuss, Germany). For delivery purposes in accordance with Art. 6 Para. (1)1 lit. b of the GDPR, we pass on the name of the recipient and delivery address to UPS. The information will only be passed on if this is necessary to deliver the goods.

(6) IT service providers for order processing and shipping management:
In some cases, we use external service providers to process your data. These have been carefully selected us, are bound by our instructions and are regularly checked.
The necessary data protection agreements are in place (order processing contracts, standard contractual clauses).

Contact requests

(1) If you contact us via the contact form or email, the data you provide will be used to process your enquiry. The information provided is necessary for processing and answering your request.

(2) The purpose of the contact form is to process enquiries. Your data will be deleted as soon as your enquiry has been finally answered and there are no legal obligations to retain the data, e.g. in the case of subsequent contract processing.

(3) Art. 6 (1) lit. b of the GDPR serve as the legal basis for this type of data processing.

In the following list, we explain the functions linked to our website:

Note on the use of service providers in the USA
Our website integrates tools from US companies, among others, unless we have been able to find equivalent alternatives from EU service providers. If these functions are activated, your personal data may be transferred to the servers of the relevant companies in the United States. Please note that the USA is not a safe third country in the sense of EU data protection law. US companies are obliged to share personal data with security authorities and you as a data subject cannot take legal action against this. Therefore, it cannot be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data on US servers for surveillance purposes. We have no influence on this processing.

To ensure an appropriate level of data protection, we have concluded order processing agreements with the relevant service providers in accordance with Art. 28 of the GDPR and, as far as possible, the current EU standard contractual clauses.

1. Google Analytics Enhanced E-Commerce

(1) This website uses Google Analytics with the extension feature “Enhanced E-Commerce Tracking” (“Google Analytics”) for online shops, a website and web shop tracking service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). The purpose of our use of the tool is to enable the analysis of your user interactions on websites, online shops and in apps and to improve our offer through the statistics and reports obtained and to make it more interesting for you as a user.

(2) We collect the interactions between you as a user of the website and our website primarily by means of cookies, device/browser data, IP addresses and website, online shop or app activities. Enhanced E-commerce Tracking stores e-commerce reports (conversation rates, click-through rates, cart-to-detail rates, etc.), i.e. also interactions of your shop visit that take place before the purchase, as well as information that is transferred with the conclusion of the purchase (product name, product ID, product category, price and quantity). Google Analytics also collects your IP addresses to ensure the security of the service and to provide us, as the website operator, with information about the country, region or location from which the respective user originates (“IP location determination”). For your protection, however, we also use the anonymisation function (“IP masking”), i.e. Google truncates the IP addresses by the last octet within the EU/EEA.

(3) The legal basis for the collection and further processing of the information for a maximum of 14 months is your consent in accordance with Art. 6 (1)1 lit. a of the GDPR. You may revoke your consent at any time without affecting the permissibility of the processing until the revocation. In apps, you can reset the advertising ID under the Android or iOS settings. The easiest way to revoke your consent is to use our Consent Manager or to install the Google browser add-on, which can be accessed via the following link: https://tools.google.com/dlpage/gaoptout?hl=de/.

(4) Google acts as a processor and we have entered into a corresponding agreement with Google. The information generated by the cookies and the (usually shortened) IP addresses about your use of this website are usually transferred to a Google server in the USA and processed there. For these cases, Google says it has imposed a standard on itself equivalent to the former EU-US Privacy Shield and has pledged to comply with applicable data protection laws when transferring data internationally. We have also agreed so-called standard contractual clauses with Google, the purpose of which is to ensure compliance with an appropriate level of data protection in the third country. Furthermore, Google is registered in the self-certification mechanism of the EU-US Data Privacy Framework (DPF) and holds a valid DPF certification (adequate level of protection for data transfers to the USA).

(5) Further information on the scope of services of Google Analytics is available at https://marketingplatform.google.com/about/analytics/terms/de/. Google provides information on data processing when using Google Analytics at the following link: support.google.com/analytics/answer/6004245?hl=en/. General information on data processing, which according to Google should also apply to Google Analytics, can be found in Google's privacy policy at www.google.de/intl/de/policies/privacy/.

2. Google Tag Manager

(1) We use Google Tag Manager a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google acts as a processor and we have entered into a corresponding agreement with Google. The Google Tag Manager is an auxiliary service and only processes personal data itself for technically necessary purposes. The Google Tag Manager takes care of loading other components, which in turn may collect data. The Google Tag Manager does not access this data.

(2) The legal basis for the collection and further processing of the information for a maximum of 14 months, is your consent in accordance with Art. 6 (1)1 lit. a of the GDPR. You may revoke your consent at any time without affecting the permissibility of the processing until the revocation. The easiest way to revoke your consent is to use our Consent Manager or to install the Google browser add-on, which can be accessed via the following link: https://tools.google.com/dlpage/gaoptout?hl=de/.

(3) Google acts as a processor and we have entered into a corresponding agreement with Google. The information generated by the cookies and the (usually shortened) IP addresses about your use of this website are usually transferred to a Google server in the USA and processed there. For these cases, Google says it has imposed a standard on itself equivalent to the former EU-US Privacy Shield and has pledged to comply with applicable data protection laws when transferring data internationally. We have also agreed so-called standard contractual clauses with Google, the purpose of which is to ensure compliance with an appropriate level of data protection in the third country. Furthermore, Google is registered in the self-certification mechanism of the EU-US Data Privacy Framework (DPF) and holds a valid DPF certification (adequate level of protection for data transfers to the USA).

(4) For more information on the Google Tag Manager, please see Google’s privacy policy at https://policies.google.com/privacy?hl=de&gl=de

3. Advertising with Facebook (Pixel and Conversion Tracking)

(1) Furthermore, the Website utilizes advertising measures of Meta Platforms Inc. (formerly "Facebook"), hereinafter referred to as Meta. By integrating the so-called "Facebook Pixel" on our Website, we can display our advertising measures ("Facebook Ads") to users of our Website and the social network Facebook and measure and evaluate their success ("Conversion Tracking"). This connection between Facebook and our Website takes place technically via the "Facebook Pixel". The legal basis for the Processing of your Data is Art. 6 para. 1 sentence 1 lit. a GDPR, meaning that the integration only occurs with your consent.

(2) Due to the Marketing Tools used, your browser automatically establishes a direct connection with the Meta server when you visit our Website. We have no control over the scope and further use of the Data collected by Meta through the use of this tool and therefore present you with the processes known to us: By integrating the Facebook Pixel, Meta receives the information that you have accessed the corresponding website of our Internet presence or have clicked on an advertisement from us. If you are registered with a Meta service, Meta can assign the visit to your account. Even if you are not registered with Facebook or have not logged in, there is a possibility that the provider will find out your IP address and other identifying features and use them to create a Profile.

(3) The gathered data is stored on Meta's servers, including those located in the USA. In such cases, the provider claims to adhere to a standard comparable to the former EU-US Privacy Shield and has committed to complying with relevant data protection regulations during international data transfers. Moreover, we have established Standard Contractual Clauses with Meta to ensure the maintenance of an adequate level of data protection in third countries. Additionally, Meta is registered in the self-certification mechanism of the EU-US Data Privacy Framework (DPF) and holds a valid DPF certification, guaranteeing a sufficient level of protection for data transfers to the USA.

(4) You can revoke your consent at any time without affecting the lawfulness of the processing up to the time of revocation. The easiest way to revoke your consent is to use our Consent Manager. In addition, (only logged-in users) can object via the provider's function at the following link: http://www.facebook.com/settings/?tab=ads#_

(5) Further information on Data Processing by Meta can be found at Meta Platforms, Inc Menlo Park, California 94304, USA; Privacy Policy: http://www.facebook.com/about/privacy

4. Integration of YouTube videos

(1) We have integrated YouTube videos into our online offer, which are stored on youtube.com and can be played directly from our website. [These are all integrated in “extended data protection mode”, i.e. no data about you as a user is transmitted to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in paragraph 2 be transmitted. We have no influence on this data transmission.] The legal basis for the display of the videos is Art. 6(1)1 lit. a of the GDPR, i.e. the transmission only takes place after your consent.

(2) By visiting the website, YouTube receives information that you have accessed the corresponding subpage of our website. In addition, the above-mentioned basic data such as IP address and time stamp are transmitted. This is regardless of whether YouTube provides a user account that you are logged in with or whether no user account exists. If you are logged in to Google, your information will be directly associated with your account. If you do not wish to be associated with your profile on YouTube, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for purposes of advertising, market research and/or needs-based design of its website. Such an evaluation takes place in particular (even for non-logged-in users) to provide advertising based on needs and in order to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.

(3) The information collected is stored on Google servers, including in the USA. For these cases, the provider says it has imposed a standard on itself equivalent to the former EU-US Privacy Shield and has pledged to comply with applicable data protection laws when transferring data internationally. We have also agreed so-called standard contractual clauses with Google, the purpose of which is to ensure compliance with an appropriate level of data protection in the third country. Furthermore, Google is registered in the self-certification mechanism of the EU-US Data Privacy Framework (DPF) and possesses a valid DPF certification (ensuring an adequate level of protection for data transfers to the USA).

(4) For further information on the purpose and scope of data collection and processing by YouTube, please see the privacy policy. They will also provide you with further information about your rights and setting options to protect your privacy: https://google.de/intl/de/policies/privacy.

5. Integration of videos via Vimeo

(1) On our Website, we also use Videos from the Company Vimeo. The video portal is operated by Vimeo LLC, 555 West 18th Street, New York, New York 10011, USA. With the help of a plug-in, we can display interesting video material directly on our website. In doing so, certain data about you may be transferred to Vimeo.

(2) The goal of our Web presence is to provide you with the best possible content. The video service Vimeo helps us to achieve this goal. Vimeo offers us the opportunity to present you with high-quality content directly on our website. Instead of just giving you a link to an interesting video, you can watch the video directly on our site. This enhances our service and makes it easier for you to access interesting content.

(3) When you visit a page on our Website that has a embedded Vimeo video, your browser connects to the Vimeo Servers. This leads to a Data transfer. This data is collected, stored and processed on the Vimeo servers. Regardless of whether you have a Vimeo account or not, Vimeo collects data about you. This includes your IP address, technical information about your browser type, your operating system or very basic device information. Furthermore, Vimeo stores information about which website you use the Vimeo service and which actions ( Web activities) you perform on our website. This web activities include, for example, session duration, bounce rate or which button you clicked on our website with built-in Vimeo function. Vimeo can track and store these actions with the help of cookies and similar technologies.

(4) If you log in to Vimeo as a Registered Member, more data can usually be collected, as more cookies may already have been set in your browser. In addition, your actions on our website will be directly linked to your Vimeo account. To prevent this, you must log out of Vimeo while "surfing" on our website.

(5) Vimeo is headquartered in White Plains in the state of New York (USA). However, the services are offered worldwide. The company uses computer systems, databases and servers in the USA and other countries. Your data can therefore also be stored and processed on servers in America. The data remains stored at Vimeo until the company no longer has a commercial reason for storing it. The data is then deleted or anonymized.

(6) You always have the option of managing cookies in your browser according to your wishes. For example, if you do not want Vimeo to set cookies and thus collect information about you, you can delete or deactivate cookies in your browser settings at any time. This works a little differently depending on your browser. Please note that various functions may no longer be fully available after deactivating/deleting cookies. In the "Cookies" section, you will find the relevant links to the instructions for the most popular browsers.

If you are a Registered Vimeo Member, you can also manage the cookies used in the Vimeo settings.

(7) If you have consented to the processing and storage of your data through integrated Vimeo elements, this consent is the legal basis for data processing (Art. 6 para. 1 lit. a GDPR). In principle, your data is also stored and processed on the basis of our legitimate interest (Art. 6 para. 1 lit. f GDPR) in fast and good communication with you or other customers and business partners. Nevertheless, we only use the integrated Vimeo elements if you have given your consent. Vimeo also sets cookies in your browser to store data. We therefore recommend that you read our data protection text on cookies carefully and consult the Privacy Policy or Cookie Policy of the respective service provider.

(8) Vimeo processes data from you, among other places, in the USA. We would like to inform you that, according to the European Court of Justice, there is currently no adequate level of protection for data transfers to the USA. This may entail various risks for the legality and security of Data processing.

(9) As a basis for Data Processing with recipients based in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or a data transfer there, Vimeo uses so-called Standard Contractual Clauses (= Art. 46. para. 2 and 3 GDPR). Standard Contractual Clauses (SCCs) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, Vimeo undertakes to comply with the European level of Data Protection when processing your relevant data, even if the Data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among others: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de Furthermore, Vimeo is registered in the self-certification mechanism of the EU-US Data Privacy Framework DPF and has a valid DPF certification (adequate level of protection of a data transfer to the USA).

You can find more information on the standard contractual clauses at Vimeo at https://vimeo.com/privacy#international_data_transfers_and_certain_user_rights .

You can find out more about the use of cookies at Vimeo at https://vimeo.com/cookie_policy, information on data protection at Vimeo can be found at https://vimeo.com/privacy.

6. Integration of Videos via Dailymotion

(1) We have integrated the plugin of the video portal Dailymotion on our website. The platform is operated by Dailymotion, Société anonyme, 140 boulevard Malesherbes - 75017 Paris, France. Dailymotion offers us the opportunity to present additional high-quality video content on our website.

(2) When you visit a page on our Website that has an embedded Dailymotion video, your browser connects to the Dailymotion servers. This results in a data transfer. This data is collected, stored and processed on the Dailymotion servers. Regardless of whether you have a Dailymotion account or not, Dailymotion collects Data about you.

During this process, the server is informed which of our pages you have visited. In addition, Dailymotion obtains your IP address, possibly technical information about your browser type, your operating system or very basic device information. Dailymotion can track and store these actions with the help of cookies and similar technologies.

(3) The Data processing is based on your consent (Art. 6 para. 1 sentence 1 lit. a GDPR).

Your consent is voluntary. You will not face any disadvantages if you do not give your consent or if you withdraw it at a later date. Consent can be withdrawn at any time in the future. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

If you are logged into your Dailymotion account, Dailymotion can associate your surfing behavior directly with your personal profile. You can prevent this by logging out of your Dailymotion account.

(4) Further information on the handling of user data can be found in Dailymotion's privacy policy at: http://www.dailymotion.com/legal/privacy.

7. Newsletter

(1) We use the CleverReach system to send our newsletter. Our service provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany. CleverReach organizes and analyzes, among other things, the distribution of our newsletter. If you enter data for the purpose of subscribing to the newsletter, it will be stored on CleverReach's servers.

(2) The only mandatory information for sending the newsletter is your E-Mail address. Optionally, you can also provide your Name, for personalized communication. After your confirmation, we will save your E-Mail address and any additional voluntarily provided information for the purpose of sending the newsletter and managing your newsletter subscriptions.

Furthermore, statistical evaluations and log files (e.g., time of retrieval, open rates, click rates, IP address, browser type and operating system, location data, delivery issues, unsubscribes, etc.) of your newsletter access are processed. With this technical information, we can analyze our newsletter campaigns. This allows us to determine, for example, whether the newsletter was opened and which links might be included. We can identify which links are clicked most frequently. We can also see if a predefined action (conversion rate) is performed after opening or clicking. For instance, we can check if you made a purchase after clicking on our newsletter. This is done using a file (a so-called web beacon) that connects with the CleverReach's servers.

The Data Processing is based on your consent (Art. 6 para. 1 sentence 1 lit. a GDPR).

Your consent is voluntary. There are no disadvantages for you if you do not give your consent or revoke it later on. Consent can be withdrawn at any time in the future. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

If you do not wish to be analyzed by CleverReach, you must unsubscribe from the newsletter. We provide a corresponding link in every newsletter for this purpose.

(3) For the registration to our Newsletter, we use the so-called double opt-in procedure. This means that after you have signed up, we will send you an email to the provided email address, asking you to confirm that you are the owner of the provided email address and that you wish to receive the notifications. If you do not confirm your registration, your information will be blocked and automatically deleted. We also store the IP addresses you use and the times of registration and confirmation. The purpose of this procedure is to verify your registration and, if necessary, to clarify any possible misuse of your Personal Data.

(4) You can revoke your consent to receive the newsletter and unsubscribe at any time. Revoking your consent does not affect the lawfulness of the data processing carried out prior to the revocation. You can revoke your consent by clicking on the link provided in every newsletter email, by sending an email to marketing@myostyle.de , or by contacting us using the contact details provided in the imprint.

(5) The data stored as a result of your Newsletter registration will remain with us or our service provider until you unsubscribe from the Newsletter. After unsubscribing from the newsletter, the data will be deleted from the Newsletter distribution list. The data that we store for other purposes remains unchanged. Your E-Mail address may remain with us or the newsletter service provider even after you have unsubscribed from the newsletter. If necessary, we will place it on a blacklist to prevent further communication. Blocked data will only be used for this purpose and will not be combined with other data. Compliance with legal regulations when sending the newsletter is in your and our interest (legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR). Blacklisting is not limited in time. You can object to the storage if your interests outweigh our legitimate interests.

(6) We have entered into a contract for data processing with the provider of CleverReach and fully implement the strict requirements of the German Data Protection Authorities at CleverReach.

8. Monday.com

(1) We use the services of monday.com on our website to manage our contacts, marketing, sales and internal projects as well as to optimise our processes. The provider of these services is monday.com Inc, 26 West 17th Street, New York, NY, 10011 United States.

(2) If you fill out a contact form, create a customer account, subscribe to our newsletter or conclude a contractual relationship with us, this information may be stored on the cloud-based platform of monday.com. The server location is Germany (Frankfurt am Main) and the data is protected with additional encryption technology (S3 encryption configuration).

(3) The corresponding data processing is carried out based on our legitimate interests pursuant to Art. 6 (1)1 lit. f of the GDPR. Our legitimate commercial interest is to improve customer care in order to provide our services. Further information about monday.com can be found at: https://monday.com/l/privacy/privacy-policy/.

(4) We have entered into a data processing agreement and the new EU standard contractual clauses with the Monday.com provider and fully implement the strict requirements of the German data protection authorities at Monday.com.

9. Use of the blog functions

You may make public comments on our blog, where we publish various posts on topics related to our activities. Your comment will be published with your specified username on the post. We recommend using a pseudonym instead of your real name. The username and email address are required, all other information is voluntary. When you post a comment, we continue to store your IP address which we delete after one week. The storage is necessary to be able to defend ourselves against liability claims in cases of possible publication of illegal content. We need your email address to contact you if a third party objects to your comment as illegal. The legal basis is Art. 6 (1) 1 lit. c and f of the GDPR. The comments are not checked before publication. We reserve the right to delete comments if they are objected to by third parties as being illegal.

10. Use of the aifinyoCHAT Chatbot

(1) On our website, we provide the chat function of aifinyoCHAT. The provider of this service is aifinyo AG, Friedrichstraße 94, 10117 Berlin.

(2) When using the chatbot, various types of data are collected and processed. If you interact with our chatbot, the texts you input and the chatbot's responses are stored (communication data/chat contents). Additionally, data related to interactions with the chat, such as your IP address, timestamps, session duration, and browser used, are stored (usage data) and processed, along with technical data, such as information about the device you are using (operating system, screen resolution).

(3) The processing of the aforementioned data serves the following purposes: to enable smooth and personalized interaction with our chatbot (provision of the chatbot service and processing and answering your questions).Additionally, the metadata is used to analyze interactions to improve the chatbot's functions and user experience (enhancement of the chatbot service), and to protect our systems and services from abuse and unauthorized access (security and abuse prevention).

(4) The processing of your personal data in connection with the use of aifinyoCHAT is based on the following legal grounds:

  • The processing is necessary for the fulfillment of a contract or for the performance of pre-contractual measures (Art. 6 para. 1 lit. b GDPR).
  • The processing is based on our legitimate interest in providing you with an efficient and user-friendly chat function and ensuring the security of our systems. (Article 6(1)(f) of the GDPR)

(5) Your data is generally not shared with third parties unless you have explicitly consented to this or if there is a legal obligation to do so. We employ external service providers who act as data processors on our behalf in accordance with Art. 28 GDPR. We have entered into a data processing agreement with the service provider Aifinyo AG. Data transfers to countries outside the European Union or the European Economic Area occur only if required by law or if you have given your consent.

(6) We retain your data only for as long as necessary to fulfill the purposes described above or as required by law. After that period, the data will be deleted or anonymized.

IV. Our social media channels

1. Visiting our social media pages

We maintain online presences within social networks and process user data in this context in order to communicate with the users active there or to provide information about us. Our company is represented with its own page on the following social media platforms:

  • Facebook
  • Instagram
  • YouTube
  • X
  • Xing
  • LinkedIN

On our website, graphics relating to the social media channels are integrated in the footer (end of web page). It is only an integration of the graphics (logos) with a link to the platforms.

If you visit a profile on a social media platform or interact with it, personal data may be processed. Personal data also includes information associated with a social media profile used, as well as messages and statements made using the profile. In addition, during your visit to a social media profile, certain information is often automatically collected, which may also constitute personal data. We would like to point out that, as a rule, the data of users within social networks are processed for market research and advertising purposes. For example, usage profiles can be created based on the usage behaviour and resulting interests of the users. The usage profiles can in turn be used, for example, to place advertisements within and outside the networks that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users’ computers, in which the usage behaviour and the interests of the users are stored. Data can also be stored in the usage profiles, regardless of the devices used by the users.

We would like to point out that the individual social media channels may process user data outside the European Union.

For a detailed presentation of the respective forms of processing and the options to object (opt-out), we refer to the data protection declarations and information provided by the operators of the respective networks:

a) Facebook
When you visit our Facebook page, through which we present our company and individual products from our range, certain information about you is processed. The sole controller of this processing of personal data is Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter referred to as Meta). Facebook is a product of Meta Platforms Ireland Limited.

We would like to point out that you use this Facebook page and its functions on your own responsibility. This applies in particular to the use of interactive functions (e.g. commenting, sharing, rating).

When you visit our Facebook page, Meta collects, among other things, your IP address and other information that is present on your PC in the form of cookies. This information is used by Meta to provide us with anonymous statistics and insights to help us understand what types of actions users are taking on our site ( "site insights"). Meta provides more information on this under the following link: https://de-de.facebook.com/business/help/144825579583746?id=939256796236247

The basis for the creation of page insights is certain information about people who have visited our site. We cannot attribute the information received via Page Insights to individual Facebook profiles that interact with our Facebook page yet receive the information in anonymised form. We have entered into a joint controller agreement with Meta which sets out the allocation of data protection obligations between us and Meta (Facebook). For details of the processing of personal data to create Page Insights and the agreement entered into between us and Meta (Facebook), please visit: https://www.facebook.com/legal/controller_addendum

The data collected about you in this context will be processed by Meta and may be transferred outside the European Union. Meta describes what information it receives and how it is used in its data guidelines. There you will also find information on how to contact Meta Platforms Ireland Limited and on the setting options for advertisements. The privacy policy is available at the following links: https://de-de.facebook.com/policy.php https://www.facebook.com/about/privacy/legal_bases

Meta discloses on the following page how it uses data from visits to Facebook pages for its own purposes, to what extent activities on the Facebook page are assigned to individual users, how long Meat stores this data and whether data from a visit to the Facebook page is passed on to third parties: https://de-de.facebook.com/policy.php

If you are currently logged in to the Facebook product as a user, there is a cookie with your Facebook ID on your end device. This enables Meta to track that you have visited this page and how you have used it. This also applies to all other Facebook pages. Via Facebook buttons embedded in websites, it is possible for Meta to record your visits to these website pages and attribute them to your Facebook profile. This data can be used to offer content or advertising tailored to you. If you wish to prevent this, you should log out of the Facebook product from Meta or deactivate the “stay logged in” function, delete the cookies present on your device and close and restart your browser. In this way, meta information by which you can be directly identified is deleted. This allows you to use our Facebook page without revealing your Facebook ID. When you access interactive features of the site (Like, Comment, Share, Message, etc.), a Facebook login screen will appear. After logging in, you will again be recognisable to Meta as a specific user. For information on how to manage or delete information about you, please visit the following Facebook support pages: https://www.facebook.com/safety/tools

b) Instagram
We use the technical platform and services of Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter referred to as Meta) for the information service offered. Instagram is a product of Meta Platforms Ireland Limited.

We would like to point out that you use this Instagram page and its functions on your own responsibility. This applies in particular to the use of the interactive functions (for example commenting or rating).

When you visit our Instagram page, Meta collects, among other things, your IP address and other information that is present on your PC in the form of cookies. This information is used to provide us, as the operator of the Instagram pages, with statistical information about the use of the Instagram page. However, any association with individual accounts/users is not possible.

The data collected about you in this context will be processed by Meta and may be transferred outside the European Union. Meta describes in general terms what information it receives and how it is used in its privacy policy. There you will also find information on how to contact Meta and on the setting options for advertisements. The privacy policy is available at the following link: https://help.instagram.com/519522125107875

The way in which Meta uses data from visits to Instagram pages for its own purposes, the extent to which activities on the Instagram page are assigned to individual users, how long Meat stores data and whether data from a visit to the Instagram page is passed on to third parties is described by Meta in the privacy policy. This is available at https://help.instagram.com/519522125107875/?helpref=hc_fnav

If you are currently logged in to the Instagram product as a user, there is a cookie with your Instagram ID on your end device. This enables Instagram track that you have visited this page and how you have used it. This also applies to all other Instagram pages. Via Instagram buttons embedded in websites, it is possible for Instagram to record your visits to these website pages and attribute them to your Instagram profile. This data can be used to offer content or advertising tailored to you.

If you wish to prevent this, you should log out of Instagram product from Meta or deactivate the “stay logged in” function, delete the cookies present on your device and close and restart your browser. In this way, Instagram information by which you can be directly identified is deleted. This allows you to use our Instagram page without revealing your Instagram ID. When you access interactive features of the site (Like, Comment, Share, Message, etc.), an Instagram login screen will appear. After logging in, you will again be recognisable Instagram as a specific user.

For information on how to manage or delete information about you, see the following Instagram help section. https://help.instagram.com/811572406418223/?helpref=hc_fnav

c) YouTube
Google Ireland Limited, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA is the sole responsible party for the processing of personal data when visiting our YouTube channel. We use our YouTube channel to inform you about our offers and events on our website.

For further information on the processing of personal data, please refer to the privacy policy provided by YouTube on the collection and storage of your personal data and the manner and purpose of its use by the platform. Available at: https://policies.google.com/privacy?hl=de&gl=de

You have the option to make settings in your Google account that restrict or stop the processing of your data. You can find out more about this at: https://myaccount.google.com/intro?hl=de and under the heading “Manage, review and update data” at: https://policies.google.com/privacy?hl=de&gl=de

If you are logged in to Google, your information will be directly associated with your account. If you do not wish to be associated with your profile on YouTube, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for purposes of advertising, market research and/or needs-based design of its website. Such an evaluation takes place in particular (even for non-logged-in users) to provide advertising based on needs and in order to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.

The information collected by YouTube is stored on Google servers, including in the USA. For these cases, the provider says it has imposed a standard on itself equivalent to the former EU-US Privacy Shield and has pledged to comply with applicable data protection laws when transferring data internationally. We have also agreed so-called standard contractual clauses with Google, the purpose of which is to ensure compliance with an appropriate level of data protection in the third country.

For further information on the purpose and scope of data collection and processing by YouTube, please see the privacy policy. They will also provide you with further information about your rights and setting options to protect your privacy: https://google.de/intl/de/policies/privacy.

d) X (formerly Twitter)
We actively use the messaging service of the Social Network X (formerly Twitter). This is operated by X Corp, 1355 Market Street, Suite 900, San Francisco, CA 94103 U.S.A. Responsible for the Data Processing of individuals residing outside the United States is Twitter International Company (hereinafter "Twitter"), One Cumberland Place, Fenian Street, Dublin 2 D02 AX07 Ireland.

We would like to remind you that you use the X messaging service offered here and its functions at your own risk. This particularly applies to the use of interactive features such as liking, sharing, rating, and commenting.

Twitter Inc. has committed to the principles of the EU-US Data Privacy Framework. Further information can be found at: https://www.dataprivacyframework.gov/s/

We do not have control over the scope of data processed by Twitter, the manner in which it is processed and used, or the sharing of this data with third parties. Additionally, we do not have effective control mechanisms in this regard.

By using X, your personal data is collected, transmitted, stored, disclosed, and utilized by Twitter Inc., regardless of your place of residence, and may be transferred to and stored and used in the United States, Ireland, and any other country where Twitter Inc. conducts business.

X will process the voluntary data you entered, such as your Name and Username, E-mail address, Telephone number or the contacts in your Address Book when you upload or synchronize it. In addition, X analyzes the content you share to determine which topics you are interested in, stores and processes confidential messages that you send directly to other users and can determine your location using geolocation data such as GPS or Galileo, information on wireless networks or your IP address in order to send you advertising or other content.

Twitter Inc. may use analysis tools such as Twitter or Google Analytics for evaluation purposes. Google Analytics. We have no influence on the use of such tools by Twitter Inc. and have not been informed of such potential use. If tools of this type are used by Twitter Inc. for our fan page, we have neither commissioned nor approved this. Additionally, we do not receive the personally identifiable data obtained from the analysis. However, we do receive certain non-personal information about tweet activity, such as the number of profile or link clicks from a specific tweet. Apart from this, we have no means to prevent or disable the use of such tools on your X account.

If you view content on X and have not created an account with X, X receives so-called " Log Data". This " Log Data" may include the IP address, the browser type, the operating system, information about the previously accessed website and the pages you accessed, your location, your mobile phone provider, the device you are using (including device ID and application ID), the search terms you used and cookie information.

Through embedded X buttons or widgets on websites and the use of cookies, X can track your visits to these websites and associate them with your X profile. Based on this data, content or advertising can be tailored to you. On our pages, content from X is exclusively integrated in compliance with data protection regulations as passive elements, and active elements are protected via the so-called "two-click solution."

You have the option to limit the processing of your data in the "general settings" of your X account as well as under the section "privacy and security." Additionally, you can restrict X's access to contact and calendar data, photos, location data, etc., in the settings of mobile devices (smartphones, tablet computers). However, this depends on the operating system you are using.

Further information about the data processed by X and the purposes for which it is used can be found in X's privacy policy at https://twitter.com/de/privacy.

Additional information is available on the following Twitter support page: https://help.twitter.com/de/privacy#Rules-and-policies

Information about accessing your own data on Twitter can be found here: https://help.twitter.com/de/managing-your-account/accessing-your-x-data

Information about the inferences drawn about you by Twitter can be found here: https://help.twitter.com/de/rules-and-policies/data-processing-legal-bases

Information on the available personalization and privacy settings can be found here: https://help.twitter.com/de/personalization-data-settings

You also have the option of requesting information via the Twitter or archive requests: https://support.twitter.com/forms/privacy

We also process the data you enter on X. This includes your username and the content you publish under your account. We process this information to retweet your tweets, reply to them, or compose tweets that reference your account.

To exercise your Data Subject Rights, you can contact us or the provider of the social media platform. If one party is not responsible for responding or must receive the information from the other party, we or the provider will then forward your request to the respective partner. Please contact the operator of the social media platform directly for questions about profiling and the processing of your data when using the website. If you have any questions about the processing of your interaction with us on our site, please write to the contact details provided by us above.

e) XING
(1) We use the business platform of XING AG, Dammtorstraße 30, 20354 Hamburg, Germany (hereinafter referred to as “XING”). If you visit XING and are logged into your XING account at the same time, XING can directly attribute your visit to our website to your XING account.

If you do not want XING to associate the data collected through our website with your account, you must log out of XING before visiting our website. We would like to point out that you use the service offered here and its functions on your own responsibility. This applies in particular to the use of interactive functions, such as sharing.

(2) Collection and storage of personal data and the nature and purpose of their use
The way in which XING collects and processes your data and the purposes for which this is done can be found in XING’s privacy policy, which can be found at https://privacy.xing.com/de/datenschutzerklaerung find. When you visit the service, cookies and similar technologies such as pixels, web beacons and local storage may be used to collect information about your use of the service and to provide features to you.

In addition, advertisers or other partners of the provider may store cookies or similar technologies on your device. Information on the provider’s contact options, as well as on how the provider uses the data from your visit to the service for its own purposes or passes it on to third parties, can also be found in the service's privacy policy https://privacy.xing.com/de/datenschutzerklaerung. You also have the option of restricting the processing of your data in the privacy settings of your profile. Information on privacy settings can be found here (with further referrals): https://privacy.xing.com/de/datenschutzerklaerung/druckversion. Furthermore, you can restrict the access of the service to contact and calendar data, photos, location data, etc. on mobile devices in the settings options there. However, this depends on the operating system used.

The data you enter on XING, in particular your username and the content published under your account, are processed by us insofar as we share or reply to your posts or also write posts from us that refer to your profile and the content is insofar included in our offer and made accessible to our followers.

The above data will be processed by us for the following purposes: Customer loyalty and promotional purposes. The legal basis for data processing is Art. 6 (1) 1 lit. f of the GDPR. Our legitimate interest arises from the purposes of data collection listed above.

f) LinkedIn
When you visit our LinkedIn page, if you are within the EU or EEA and Switzerland, LinkedIn Ireland Unlimited Company (Ireland/EU - "LinkedIn") Attn: Legal Dept. (Privacy Policy and User Agreement), Wilton Plaza, Wilton Place, Dublin 2 is the sole controller of your personal data. If you are located outside the above-mentioned area, LinkedIn Corporation, Attn: Legal Dept. (Privacy Policy and User Agreement), 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA, is the sole controller of your personal data.

When you visit, follow or engage with our LinkedIn company page, LinkedIn processes personal data to provide us with anonymised statistics and insights. This provides us with insights into the types of actions people take on our site (known as page insights). For this purpose, LinkedIn processes in particular data that you have already provided to LinkedIn via the information in your profile (e.g. data on your professional position, country, industry, seniority, company size and employment status). In addition, LinkedIn will process information about how you interact with our LinkedIn company page, e.g. whether you are a follower of our LinkedIn company page. With page insights, LinkedIn does not provide us with any personal data about you. We only have access to the aggregated page insights. It is also not possible for us to draw conclusions about individual members from the information provided. This processing of personal data in the context of page insights is carried out by LinkedIn and us as joint controllers. The processing serves our legitimate interest to evaluate the types of actions taken on our LinkedIn company page and to improve our company page based on these insights.

We have entered into a joint controller agreement with LinkedIn which sets out the allocation of data protection obligations between us and LinkedIn. The agreement is available at: https://legal.linkedin.com/pages-joint-controller-addendum

In relation to this data processing, you have the option to assert your data subject rights (see “Your rights”) also against LinkedIn. For more information, see LinkedIn’s privacy policy: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy and https://www.linkedin.com/help/linkedin/ask/PPQ?lang=de

Please note that in accordance with LinkedIn's privacy policy, personal data may also be processed by LinkedIn in the US or other third countries.

2. Processing of data you provide to us via our social media pages

We process information that you have provided to us via our company page on the respective social media platform. Such information may include, for example, the username used, contact details or a message to us. We regularly process this personal data only if we have previously expressly requested you to provide us with this data. Processing of data in this context is carried out by us as the sole controller. We process this data on the basis of our legitimate interest in contacting enquirers. Art. 6 (1)1 lit. f of the GDPR serve as the legal basis. The deletion of your data on the individual social media channels depends on the individual provider. If we use your data for other purposes, we will inform you of this separately.

V. Data Collection for Registration and Participation in "myostyle Events"

If you register for a myostyle event using the registration form, the data you provide ( Name, Number of participants) will be stored by us for the preparation of the event.

Information on the Scope and Purpose of the Processing and the Legal Basis

The data processing via the registration form serves the planning security of the event, such as the binding registration of guests and the receipt of the number of participants.

The corresponding data processing is based on our legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. f DSGVO. Our legitimate concern is the Planning, Preparation and Execution of the Company Event.

Disclosure of personal data/ other recipients

Personal Data Processed in Connection with Participation in the Event will not be disclosed to third parties unless it is specifically intended for disclosure, you have previously given your express consent to the disclosure, or we are required or authorized to do so by law.

Deletion of your Data

We generally delete personal data when there is no need for further storage. Data collected via the registration form will be deleted no later than 4 weeks after the event.

Please note the information on image recording ("Photographic and video recordings") at our event.

Status: 20/09/2024