This site uses third-party website tracking technologies to provide and continuously improve its services and to display advertising in line with the interests of users. I agree to this and can revoke or change my consent at any time with effect for the future. Privacy policy
Settings
Accept allReject all
Cookies

Privacy policy

With this privacy policy, we would like to inform you about the type, scope and purpose of the processing of personal data (hereinafter also referred to as "data"). Personal data is all data that has a personal reference to you, e.g. name, address, e-mail address or your user behavior. The privacy policy applies to all data processing operations carried out by us, both in the context of our core activities and for the online media we provide.

Who is responsible for data processing at our company

Responsible for data processing is:

Matthias Werschmann Digital Product Design
Matthias Werschmann
Subbelrather Str. 196
50823 Cologne
Germany
+4917632967698
hello@mttw.space
https://www.mttw.studio/impressum

Processing of your data in the context of the agency services we provide

We offer agency services. If you are our customer or business partner or are interested in our services, the type, scope and purpose of the processing of your data depends on the contractual or pre-contractual services existing between us. This includes conceptual and strategic consulting, software and design development and consulting and maintenance services in this area, planning and implementation of campaigns, IT and server administration as well as other consulting and training services. In this sense, the data processed by us includes all data that is or has been provided by you for the purpose of using the contractual or pre-contractual services and that is required to process your request or the contract concluded between us. Unless otherwise stated in the further information in this privacy policy, the processing of your data and its disclosure to third parties is limited to the data that is necessary and expedient to answer your inquiries and/or to fulfill the contract concluded between you and us, to protect our rights and to fulfill legal obligations. We will inform you which data is required for this before or during data collection. Insofar as we use third-party providers to provide our services, the data protection notices of the respective third-party providers apply.

Data concerned:

  • Inventory data (e.g. names, addresses)
  • Payment data (e.g. bank details, invoices)
  • Contact data (e.g. e-mail address, telephone number, postal address)
  • Contract data (e.g. subject matter of the contract, duration of the contract)

Affected persons: Customers, interested parties, business and contractual partners

Purpose of processing: Processing of contractual services, communication and answering contact requests, office and organizational procedures

Legal basis: Fulfillment of contract and pre-contractual inquiries, Art. 6 para. 1 lit. b GDPR, legal obligation, Art. 6 para. 1 lit. c GDPR, legitimate interest, Art. 6 para. 1 lit. f GDPR

Your rights under the GDPR

According to the GDPR, you are entitled to the rights listed below, which you can assert at any time with the controller named in section 1 of this privacy policy:

  • Right to information: You have the right to request information from us as to whether and which of your data we process.
  • Right to rectification: You have the right to request the rectification of inaccurate data or the completion of incomplete data.
  • Right to erasure: You have the right to request the erasure of your data.
  • Right to restriction: In certain cases, you have the right to request that we only process your data to a limited extent.
  • Right to data portability: You have the right to request that we transfer your data to you or another controller in a structured, commonly used and machine-readable format.
  • Right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority. The supervisory authority of your usual place of residence, your workplace or our company headquarters is responsible.

Right of withdrawal

You have the right to withdraw your consent to data processing at any time.

Right of objection

You have the right to object at any time to the processing of your data, which we base on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. If you make use of your right to object, we ask you to explain the reasons. We will then no longer process your personal data unless we can prove to you that there are compelling legitimate grounds for data processing that outweigh your interests and rights.

Irrespective of the above, you have the right to object to the processing of your personal data for advertising and data analysis purposes at any time.

Please address your objection to the contact address of the controller given above.

When do we delete your data?

We delete your data when we no longer need it or when you instruct us to do so. This means that - unless otherwise stated in the individual data protection notices in this privacy policy - we will delete your data,

  • if the purpose of the data processing has ceased to exist and thus the respective legal basis stated in the individual data protection notices no longer exists, e.g.
    • after termination of the contractual or membership relationship between us (Art. 6 para. 1 lit. a GDPR) or
    • after our legitimate interest in the further processing or storage of your data ceases to apply (Art. 6 para. 1 lit. f GDPR),
  • if you exercise your right of revocation and no other legal basis for processing within the meaning of Art. 6 para. 1 lit. b-f GDPR applies,
  • if you exercise your right to object and there are no compelling legitimate grounds for erasure.

However, if we still need to retain (certain parts of) your data for other purposes, for example because tax retention periods (usually 6 years for business correspondence or 10 years for accounting documents) or the assertion, exercise or defense of legal claims arising from contractual relationships (up to four years) make this necessary or the data is needed to protect the rights of another natural or legal person, we will only delete (the part of) your data after these periods have expired. Until the expiry of these periods, however, we restrict the processing of this data to these purposes (fulfillment of retention obligations).

Cookies

Our website uses cookies. Cookies are small text files consisting of a series of numbers and letters that are stored on the device you are using. Cookies are primarily used to exchange information between the device you are using and our website. This includes, for example, the language settings on a website, the login status or the location where a video was watched.

Two types of cookies are used when you visit our website:

  • Temporary cookies (session cookies): These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. The session cookies are deleted when you log out or close your browser.
  • Permanent cookies: Permanent cookies remain stored even after the browser is closed. This allows our website to recognize your computer when you return to our website. Information on language settings or log-in information, for example, is stored in these cookies. These cookies can also be used to document and store your surfing behavior. This data can be used for statistical, marketing and personalization purposes.

In addition to the above classification, cookies can also be differentiated according to their purpose:

  • Necessary cookies: These are cookies that are absolutely necessary for the operation of our website in order to save logins or shopping baskets for the duration of your session or cookies that are set for security reasons.
  • Statistics, marketing and personalization cookies: These are cookies that are used for analysis purposes or to measure reach. Such "tracking" cookies can be used in particular to store information on search terms entered or the frequency of page views. In addition, the surfing behavior of an individual user (e.g. viewing certain content, use of functions, etc.) can also be stored in a user profile. Such profiles are used to show users content that corresponds to their potential interests. If we use services that store cookies on your device for statistical, marketing and personalization purposes, we will inform you about this separately in the following sections of our privacy policy or when obtaining your consent.

Data concerned:

  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address).

Data subjects: Users of our online services

Purpose of processing: Displaying our website, ensuring the operation of our website, improving our website, communication and marketing

Legal basis:
Legitimate interest, Art. 6 para. 1 lit. f GDPR
If we do not obtain your consent to the setting of cookies, we base the processing of your data on our legitimate interest in improving the quality and user-friendliness of our website, in particular the content and functions. You can use the security settings of your browser to object to the use of cookies set by us within the scope of our legitimate interest. There you can specify whether you do not accept cookies from the outset or only accept them on request, or whether you want cookies to be deleted every time you close your browser. If cookies are deactivated for our website, it may no longer be possible to use all the functions of the website to their full extent.

Consent, Art. 6 para. 1 lit. a GDPR
If we ask you to allow us to place certain cookies on your end device before you visit our website and you consent to this, the legal basis is to be seen in the consent you have given. As part of your consent, we will inform you which cookies we set in detail. If you do not give this consent, only the so-called technically necessary cookies that are required for the proper operation of our website and its display in your browser will be set. If you have consented to the setting of cookies, you have the option to withdraw your consent at any time.

Webhosting

To maintain our website, we use a provider on whose server our website is stored and made available for retrieval on the Internet (hosting). The provider may process all data transmitted via the browser you use that is generated when you use our website. This includes, in particular, your IP address, which the provider requires in order to be able to deliver our online offer to the browser you are using, as well as all entries you make via our website. In addition, the provider we use can  

  • the date and time of access to our website
  • Time zone difference to Greenwich Mean Time (GMT)
  • Access status (HTTP status)
  • the amount of data transferred
  • the Internet service provider of the accessing system
  • the type of browser you are using and its version
  • the operating system you are using
  • the website from which you may have reached our website
  • the pages or sub-pages that you visit on our website.

collect. The aforementioned data is stored as log files on the servers of our provider. This is necessary to ensure the stability and security of the operation of our website.

Data concerned:

  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Data subjects: Users of our website

Purpose of processing: Displaying our website, ensuring the operation of our website

Legal basis: Legitimate interest, Art. 6 para. 1 lit. f GDPR

Web host(s) commissioned by us:

Webflow

Service provider: Webflow
Website: Inc. 208 Utah, Suite 210, San Francisco, CA 94103, USA
Privacy Policy: https://webflow.com

We host our website with Webflow. The provider is Webflow, Inc, 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA (hereinafter: Webflow). When you visit our website, Webflow collects various log files including your IP addresses, which are anonymized.

Webflow is a tool for creating and hosting websites. Webflow stores cookies or other recognition technologies that are required to display the page, to provide certain website functions and to ensure security (necessary cookies).

Details can be found in Webflow's privacy policy: https://webflow.com/legal/eu-privacy-policy

‍Theuse of Webflow is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in displaying our website as reliably as possible. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.

For data transfers to the USA, the provider has signed up to the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

Order processing: We have concluded an order processing contract (AVV) with the above-mentioned provider. This is a contract prescribed by data protection law, which ensures that the provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.

Content Delivery Network

We use a content delivery network (CDN) to deliver our Internet pages. A CDN is a network of regionally distributed servers connected via the Internet. Scaling storage and delivery capacities are made available via the CDN. This optimizes the loading times of our Internet pages and ensures optimum data throughput even at high load peaks. User requests on our websites are routed via CDN servers. Statistics are compiled from these data streams. On the one hand, this serves to detect potential threats to our website from malware at an early stage and, on the other hand, to continuously improve our offering and make our website more user-friendly for you as a user.

We would like to point out that, depending on the country of domicile of the service provider named below, the data collected via the service may be transferred and processed outside the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR will not be complied with and that the enforcement of your rights will be difficult or impossible.

Data concerned:

  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address)

Processing purpose: Technical optimization of the website, analysis of errors and user behavior

Legal basis: Legitimate interest, Art. 6 para. 1 lit. f GDPR

CDN service providers used:

Amazon CloudFront

Service provider: Amazon Web Services, Inc, 410 Terry Avenue North, Seattle WA 98109, USA
Website: https://aws.amazon.com/de/
Privacy Policy: https://aws.amazon.com/de/privacy/?nc1=f_pr.

Amazon CloudFront
Service provider: Amazon Web Services, Inc, 410 Terry Avenue North, Seattle WA 98109, USA
Website: https://aws.amazon.com/de/
Privacy Policy: https://aws.amazon.com/de/privacy/?nc1=f_pr.

Fastly
Service provider: Fastly Inc, 475 Brannan St. #300, San Francisco, CA 94107, USA
Website: https://www.fastly.com
Privacy Policy: https://www.fastly.com/de/privacy

Contact us

If you contact us via e-mail, social media, telephone, fax, post, our contact form or in any other way and provide us with personal data such as your name, telephone number or e-mail address or provide further information about yourself or your request, we will process this data to answer your inquiry within the framework of the pre-contractual or contractual relationship existing between us.

Data concerned:

  • Inventory data (e.g. names, addresses)
  • Contact data (e.g. e-mail address, telephone number, postal address)
  • Content data (texts, photos, videos)
  • Contract data (e.g. subject matter of the contract, duration of the contract)

Affected persons: Interested parties, customers, business and contractual partners

Purpose of processing: Communication and answering contact requests, office and organizational procedures

Legal basis: Fulfillment of contract and pre-contractual inquiries, Art. 6 para. 1 lit. b GDPR, legitimate interest, Art. 6 para. 1 lit. f GDPR

Web analysis and statistics

We use web analysis services to record and statistically evaluate the flow of visitors to our website. Among other things, such services collect data about the website from which you came to our website (so-called referrers), which pages of our website you accessed, how long you visited our pages and what interactions you made there. In addition, data on the browser, computer system and type of device you are using is collected. In addition, demographic information, such as age or gender, can also be collected as pseudonymous values via such a service. If you have consented to the collection of your location data, this may also be processed, depending on the provider.

In order to collect and store this data, the web analysis service we use generally places a cookie on the end device you are using, which also collects the IP address assigned to you. However, this is shortened using a so-called IP masking procedure so that the IP address can no longer be assigned to your visit to our website. No other clear data such as names or e-mail addresses are stored. Neither we nor the service we use know the identity of visitors to our website.

When collecting the data, however, the service provider can use cookies to create pseudonymous usage profiles with information from the use of various devices.

We would like to point out that, depending on the country of domicile of the service provider named below, the data collected via the service may be transferred and processed outside the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR will not be complied with and that the enforcement of your rights will be difficult or impossible.

Data concerned:

  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address).

Data subjects: Users of our online services

Processing purpose: Reach measurement, campaign success monitoring, remarketing and interest-based and behavior-based marketing

Legal basis: If we have asked for your consent before using the respective service, this is the legal basis, Art. 6 para. 1 lit. a GDPR. In addition, we use the respective service on the basis of our legitimate interest in analyzing the flow of visitors to our website in order to continuously improve the functions, offers and user experience, Art. 6 para. 1 lit. f GDPR.

We use the following web analysis services:

Google Analytics 4

Service provider: Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Registered office within the EU: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland
Website: https://marketingplatform.google.com/intl/de/about/analytics/
Privacy Policy: https://policies.google.com/privacy?hl=de
Note on data transmission to Google Analytics servers: When you visit our website within the EU (based on the geographical location according to the IP address), the IP address assigned to you is collected exclusively via servers in the EU and used as a geolocation date to be deleted immediately afterwards. It is neither logged nor used in any other way. The other measurement data is then forwarded to Google Analytics servers to be analyzed there.
Opt-out option: If you do not want your data to be used by Google Analytics, you can set an opt-out plugin that will prevent your data from being collected on our website in the future. You can obtain this plugin here: https://tools.google.com/dlpage/gaoptout?hl=de

Our online presence on social networks

We operate online presences within the social networks listed below. If you visit one of these sites, the data listed below will be collected and processed by the respective provider. As a rule, this data is collected for advertising and market research purposes and usage profiles are created. Data can be stored in the user profiles regardless of the device you use. This is particularly the case if you are a member of the respective platform and are logged in to it. The usage profiles can be used by the providers to show you interest-based advertising. You have the right to object to the creation of user profiles. To exercise this right, you must contact the respective provider.

If you have an account with one of the providers listed below and are logged in there when you visit our website, the respective provider may collect data about your usage behavior on our website. To prevent your data from being linked in this way, you can log out of the provider's service before visiting our site.

You can find out for what purpose and to what extent data is collected by the provider in the respective data protection declarations of the providers provided below.

We would like to point out that, depending on the country of domicile of the provider named below, the data collected via its platform may be transferred and processed outside the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR will not be complied with and that the enforcement of your rights will be difficult or impossible.

Data concerned:

  • Inventory and contact data (e.g. name, address, telephone number, e-mail address)
  • Content data (e.g. posts, photos, videos)
  • Usage data (e.g. access times, websites clicked on)
  • Communication data (e.g. information about the device used, IP address).

Processing purpose: Communication and marketing, tracking and analysis of user behavior

Legal basis: Consent, Art. 6 para. 1 lit. a GDPR, legitimate interests Art. 6 para. 1 lit. f GDPR

Possibilities of objection: For the respective opt-out options, please refer to the information provided by the providers linked below.

We maintain online presences on the following social networks:

Instagram

Service provider: Instagram Inc, 1601 Willow Road, Menlo Park CA 94025, USA
Parent company: Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA
Registered office in the EU: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Website: https://www.instagram.com/
Privacy Policy: http://instagram.com/about/legal/privacy

LinkedIn

Service provider: LinkedIn Corporation, 1000 W Maude, Sunnyvale, CA 94085, USA
Registered office in Germany: LinkedIn, Hofstatt 4th Floor, Sendlinger Str. 12, 80331 Munich
Website: https://www.linkedin.com/?trk=nav_logo
Privacy policy: https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy

Security measures

We also take state-of-the-art technical and organizational security measures to comply with the provisions of data protection laws and to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties.

Up-to-dateness and amendment of this privacy policy

This privacy policy is currently valid and is dated December 2024. Due to changes in legal or regulatory requirements, it may be necessary to adapt this privacy policy.

This privacy policy was created with the help of the SOS Recht data protection generator. SOS Recht is an offer of Mueller.legal Rechtsanwälte Partnerschaft based in Berlin.

Back