Terms of Service

Privacy Policy
Our platform www.faveshub.com gives you, as a fan or creator, access to creative content. To ensure that you can fully use all functions of FavesHub — especially with regard to payment, interaction, and content publishing — it is necessary for us to collect and process certain personal data from you.
What is personal data?
Personal data is any information that can be used to identify you directly or indirectly. This includes, for example, your name, email address, date of birth, payment details, or IP address.
FavesHub takes the protection of your personal data very seriously. We handle your information confidentially and in compliance with the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and other applicable data protection laws.
In this Privacy Policy, we want to inform you in clear language about:

Who is responsible for data processing on FavesHub (I.),
Who to contact with questions about data protection (II.),
What data we collect and for what purpose,
How we handle cookies and tracking technologies (III. and IV.),
What rights you have under the GDPR (XVIII.),
And when and why data is shared with third parties (X.).

Please take a moment to read this Privacy Policy carefully. It forms part of our general Terms of Use and applies to all users — both fans and creators.
Contents I. Controller for Data Processing
II. Contact for Data Protection Matters
III. Use of Cookies and Similar Technologies
IV. Server Log Files: Data Collected When Visiting the Website
V. Registration and Login to a User Account
VI. Registration and Verification as a Creator
VII. Use of Paid Features and Content
VIII. Content You Provide and Data Sharing
IX. Contact Options and Communication
X. Sharing of Personal Data with Third Parties
XI. Data Transfers to Non-EU Countries Outside the EEA
XII. Use of Google Services
XIII. Use of Meta Pixel (Facebook/Instagram)
XIV. Use of TikTok Pixel
XV. Use of Reddit Pixel
XVI. Protection of Your Data (Technical and Organizational Measures)
XVII. Duration of Storage and Data Deletion
XVIII. Your Data Protection Rights under the GDPR
XIX. Changes to this Privacy Policy
I. Controller for Data Processing
The controller pursuant to the GDPR is:
Softproved UG (haftungsbeschränkt)
represented by the Managing Director (Vincent Hertrich)
Carl-Benz-Strasse 16
69198 Schriesheim
Germany
Email: datenschutz@faveshub.com
Definitions:

Controller: A natural or legal person who determines the purposes and means of the processing of personal data.
Processing: Any operation related to personal data, such as collection, storage, use, disclosure, or deletion.

II. Contact for Data Protection Matters
If you have any questions about data protection, you can contact our Data Protection Officer at any time.
Contact: Softproved UG (haftungsbeschränkt) – Data Protection Officer
Carl-Benz-Strasse 16
69198 Schriesheim
Germany
Email: datenschutzbeauftragter@faveshub.com
III. Use of Cookies and Similar Technologies
We use cookies on www.faveshub.com. Cookies are small text files that your browser automatically creates and stores on your device (e.g., laptop, tablet, smartphone) when you visit our website. Cookies do not harm your device and do not contain viruses, trojans, or other malware.
Cookies store information that relates to the device being used. This information does not directly identify you.
We use cookies to:

Ensure the technical functionality of our platform (e.g., login processes);
Improve usability (e.g., saved settings);
Measure the success of advertising campaigns (affiliate tracking);
Perform statistical analysis of website usage.

Types of cookies:

Session cookies: These are automatically deleted once you leave our website.
Persistent cookies: These remain stored on your device until you delete them manually or they are automatically removed by your browser.

Legal basis:

Necessary cookies: Art. 6(1)(f) GDPR (legitimate interest);
Cookies for analysis or marketing purposes: Art. 6(1)(a) GDPR (consent).

Your options:

Upon your first visit, a cookie banner will appear where you can set your preferences.
You can withdraw or change your consent at any time via the cookie settings on the website.
You can also configure your browser to prevent the storage of cookies or to notify you whenever a new cookie is set.

External opt-out options:

Network Advertising Initiative: https://optout.networkadvertising.org/
YourOnlineChoices: https://www.youronlinechoices.com/
Digital Advertising Alliance: https://optout.aboutads.info/

Please note: If you completely disable cookies, some functions of the platform may no longer be available or usable.

IV. Server Log Files: Data Collected When Visiting the Website
When you access our website www.faveshub.com, general information is automatically collected and stored in so-called server log files. These files contain technical data necessary for correctly displaying the website, ensuring security, and identifying potential sources of error or attacks.
The following data may be logged:

The IP address of the requesting device
Date and time of access
Name and URL of the accessed file
Website from which access originated (referrer URL)
Browser used and, if applicable, the operating system of your device
Name of your internet service provider
Access status (e.g., file transferred, file not found)
Amount of data transferred
Other similar data required for security in case of attacks

These data do not normally allow us to draw any direct conclusions about your identity.
Purpose of processing:

Technical delivery of the website
Ensuring system stability and security
Evaluation for system administration purposes
Detection and prevention of attacks on our IT infrastructure
Provision to investigative authorities in case of a cyberattack

Legal basis: The processing is carried out on the basis of Art. 6(1)(f) GDPR. Our legitimate interest lies in ensuring the security, stability, and functionality of the website.
Storage period: Log file data are regularly deleted as soon as they are no longer required for the purpose for which they were collected — usually after 14 days.
No merging of these data with other personal data or disclosure to third parties takes place unless there is a legal obligation or legitimate interest in the context of investigations.

V. Registration and Login to a User Account

Registration via Input Form
To use certain functions of our platform, you need a personal user account. During registration, we collect personal data that you provide voluntarily. This usually includes your email address and a password of your choice.

These data are necessary to technically set up your user account, enable the use of our services, and fulfill our contractual obligations. The legal basis is Art. 6(1)(b) GDPR.
Your email address may also be used to send you important information about your account. The username you choose will serve as your pseudonym within the platform (e.g., for comments or chat). Other users will not see your real identity.
You can update or delete your data at any time in your account settings — subject to statutory retention requirements. If you have questions, feel free to contact us (see Sections I and II).

Login via Single Sign-On (SSO)
As an alternative to manual registration, you can log in to FavesHub using Single Sign-On (SSO) services. We provide interfaces to providers such as Facebook, X (formerly Twitter), Instagram, Google, Apple, or Snapchat.

If you choose SSO, login takes place via the account you hold with the respective provider. After successful authentication, the provider transmits selected data to us — usually your email address and username. Your FavesHub account will only be created with your explicit consent.
No permanent link between your FavesHub account and the external provider is established. Data processing is based on your consent (Art. 6(1)(a) GDPR), the necessity to fulfill a contract (Art. 6(1)(b) GDPR), and our legitimate interest in providing a simple and secure login method (Art. 6(1)(f) GDPR).
Please refer to the privacy policies of the respective providers:

Facebook: https://www.facebook.com/about/privacy/
X (Twitter): https://twitter.com/privacy
Instagram: https://www.instagram.com/about/legal/privacy/
Snapchat: https://www.snap.com/en-US/privacy/privacy-policy
Google: https://policies.google.com/privacy
Apple: https://www.apple.com/legal/privacy/

Logged Data During Registration and Login
In addition to the data you actively provide, we also collect technical data with each login:

IP address
Date and time
Browser and operating system used
Referrer URL (source of the request)
Possibly login location

These data help us maintain platform security, detect misuse, and provide our services correctly. The processing is based on our legitimate interest in accordance with Art. 6(1)(f) GDPR. Disclosure to third parties only occurs when required by law, e.g., for law enforcement.

VI. Registration and Verification as a Creator
If you wish not only to consume content but also to become a creator on FavesHub, a specific registration process is required. As part of this process, we need to collect additional personal data to clearly verify your identity and comply with legal requirements.
The following information is mandatory for creator registration:

First and last name
Date and place of birth
Gender
Address (street, house number, postal code, city, country)
Preferred currency at your place of residence
Bank account details (e.g., IBAN)
VAT information (if applicable)
Proof of identity (e.g., ID card or passport) and a recent photo for visual identity verification (selfie with ID)

This information ensures the credibility and legal compliance of your content and allows smooth payout processes and adherence to youth protection laws.
You can view and update your data at any time in your creator account, provided there are no statutory retention obligations.
The processing of this data is based on:

Art. 6(1)(b) GDPR – for the performance of our contractual relationship or pre-contractual measures
Art. 6(1)(c) GDPR – for compliance with legal obligations (e.g., age verification, tax requirements)

The age verification is especially important to protect minors and ensure that only adults are allowed to offer content on FavesHub. Collecting your banking and tax data is necessary for correct payment processing and invoicing.
Please note: Payouts are made only to you personally. Therefore, a match between the ID document, selfie, and provided information is mandatory.
VII. Use of Paid Features and Content
If you wish to use paid features or access premium content on our platform — such as paid subscriptions, premium tools, or individual purchases — we need to collect and process certain personal data. The type and scope of data collected may vary depending on the selected payment method.
The following data may be required:

First and last name
Address
Date of birth
Email address
Bank account or payment service information
Possibly proof of identity

We require these data to:

Clearly identify you as the contracting party
Verify your age (e.g., to protect minors from certain content)
Process payments correctly
Send you relevant contractual information

Data collection and processing are based on the following legal grounds:

Art. 6(1)(b) GDPR – for the performance of the usage contract and pre-contractual measures
Art. 6(1)(c) GDPR – for compliance with legal obligations (e.g., age verification, tax regulations)

The email address you provide will be used in particular for contractual communication, including sending you confirmations and invoices. Your bank details are used exclusively for the payment process and will not be stored beyond what is technically or legally necessary.
Please note: Depending on the payment service provider you choose, their respective privacy policies also apply. We will only share your payment data with third parties if it is absolutely necessary for the payment process (e.g., to banks or payment providers).

VIII. Content You Provide and Data Sharing
Profile Customization and Visibility
As a user or creator, you can customize your personal profile. You may voluntarily provide information such as profile pictures, descriptions, or other personal details. This information is visible to other registered users and may appear in comments or messages.
By uploading or entering such information, you expressly consent to the processing of these personal data (Art. 6(1)(a) GDPR). If this information includes particularly sensitive data (e.g., sexual orientation or health data), your consent is also based on Art. 9(2)(a) GDPR.
You can revoke your consent at any time with future effect, for example by deleting specific content or your entire profile data via the user interface. Alternatively, you may send your withdrawal of consent by email or post to our Data Protection Officer (see Sections I and II). Once your withdrawal is received, the affected content will be deleted immediately.
Please note: Content made public may be stored, copied, or shared by other users — even outside the platform. We have no control over this.
Use of Messenger and Posting Features
Our platform allows you to publish posts in the form of text, images, videos, or other media content, and to send messages using internal communication tools. You may choose to share this content with selected users.
The following data are processed in this context:

The content itself (texts, images, videos, PDFs, etc.)
Date of publication
Your username/pseudonym
Your IP address at the time of publication

The data processing is based on your voluntary consent (Art. 6(1)(a) GDPR). In addition, we have a legitimate interest (Art. 6(1)(f) GDPR) in ensuring the integrity and security of our platform, especially to prevent misuse and fraud.
Please be aware that voluntarily provided information on particularly sensitive topics (e.g., sexual orientation, religion, political views) may reveal personal characteristics. In such cases, processing is also based on your explicit consent under Art. 9(2)(a) GDPR.
You can delete published content at any time or ask us to do so. You can withdraw your consent to publication at any time without giving reasons. Any processing carried out up to that point remains lawful.
Newsletter Subscription
If you subscribe to our newsletter, we will regularly inform you about news, features, or special content on our platform. To do this, we need your valid email address. After signing up, you will receive a confirmation email (double opt-in) to verify your subscription.
To ensure proper documentation, we store the following:

Your email address
Your IP address at the time of subscription
Date and time of subscription and confirmation

This data processing is based on your consent (Art. 6(1)(a) GDPR). Your data will not be shared with third parties. You may unsubscribe from the newsletter at any time — either through a link in each email or by contacting us or our Data Protection Officer (see Sections I and II). Upon unsubscribing, your data will be immediately removed from the distribution list.
IX. Contact Options and Communication
You have several options for contacting us — by mail, email, or using the chat function on our website. Regardless of the communication channel used, your data will only be processed for the purpose of handling your inquiry.
Legal bases for processing:

Art. 6(1)(a) GDPR — your voluntary consent
Art. 6(1)(b) GDPR — if communication is part of a contractual relationship or serves to initiate a contract

The data will be deleted once the purpose of the communication has been fulfilled and no legal retention obligations prevent this.
1. Contact by Mail
If you send us a letter, we process the address data you provide (e.g., name, address), the date of receipt, and the content of your letter including any attachments. Our response will be sent by post or, if indicated, by email.
2. Contact by Email
If you email us (e.g., using the address in the imprint or on the contact page), we process your email address, the content of your message, and any attached files solely for the purpose of handling your request.
3. Support Chat Function
If you use our website's chat feature, we process:

Start and end time of the chat
Duration of the conversation
Identification of the conversation partner (support staff)
Text content of the messages

The chat is automatically closed when you leave the page or close the chat window. Here too, data are processed solely to handle your request.
In all cases, your contact details will not be shared with third parties unless it is necessary to fulfill your request or there is a legal obligation to do so.
X. Sharing of Personal Data with Third Parties
Definitions:

Third Party: Any natural or legal person, authority, institution, or other body other than the data subject, the controller, or a processor who processes personal data on behalf of the controller.
Recipient: Any entity to which personal data are disclosed, whether or not a third party.
Consent: Any freely given, specific, informed, and unambiguous indication of the data subject’s wishes to signify agreement to the processing of personal data.

General Rules for Data Sharing
Your personal data are only shared in the following cases:

With your explicit consent (Art. 6(1)(a) GDPR)
For the performance of a contract or to carry out pre-contractual measures (Art. 6(1)(b) GDPR)
For compliance with a legal obligation (Art. 6(1)(c) GDPR)
To protect our legitimate interests, provided your interests do not override ours (Art. 6(1)(f) GDPR)

In cases of data processing on our behalf, we enter into appropriate agreements with external service providers and ensure that the provisions of the GDPR are adhered to.
Sharing Data with Payment Service Providers
To process your transactions, we may share personal data — depending on the chosen payment method — with the following payment providers:

PayPal (PayPal (Europe) S.à r.l. et Cie, S.C.A.)
Payoneer (Payoneer Europe Limited)
Zelle (Early Warning Services, LLC)
Western Union (The Western Union Company)
Bitcoin (via wallet address — processing depends on wallet provider)
Bank Transfer (to your specified bank)
Mercado Pago (MercadoLibre S.A.)
Stripe (Stripe Payments Europe, Ltd.)

The specific data shared depends on the payment method but generally includes:

Name
Address
Email address
Payment information (e.g., account details, transaction amount, reference number)
Contract information (e.g., service description)

Legal bases:

Art. 6(1)(b) GDPR (contract fulfillment)
Art. 6(1)(a) GDPR (consent, e.g., when selecting a specific provider)
Art. 6(1)(f) GDPR (legitimate interest in secure and efficient payment processing)

Shared data are used exclusively for payment purposes. Further use by these providers only occurs if you have given your consent. For information about data processing by these payment services, please consult their respective privacy policies.
XI. Data Transfers to Non-EU Countries Outside the EEA
Definitions:

Third Country: A country outside the European Economic Area (EEA) where the GDPR does not directly apply.
Unsafe Third Country: A third country that has not been deemed by the EU Commission to provide an adequate level of data protection (i.e., no adequacy decision under Art. 45(1) GDPR).

Transfers of Personal Data to Third Countries
Most of our service providers are based within the European Union. However, we also use services from providers located in Switzerland, the United Kingdom, and the United States.
The European Commission has adopted adequacy decisions for the following countries under Art. 45 GDPR, meaning they are considered to provide a level of data protection comparable to the EU:

Switzerland
United Kingdom
United States (if the company is certified under the EU-U.S. Data Privacy Framework)

A list of certified U.S. companies can be found at:
https://www.dataprivacyframework.gov/list
Transfers to Unsafe Third Countries
If a provider is not certified under the Data Privacy Framework or data are transferred to an unsafe third country, we use Standard Contractual Clauses (SCCs) as issued by the EU Commission. These ensure an adequate level of protection under Art. 46 GDPR.
For more information on SCCs, visit:
https://commission.europa.eu/publications/standard-contractual-clauses-international-transfers_de
If you have any questions about third-country transfers or wish to receive a copy of the contractual agreements, feel free to contact us or our Data Protection Officer (see Sections I and II).

XII. Use of Google Services

General Information About Google Services
We use various services provided by Google on our platform. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. In certain cases, Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, may also access the data.

When using Google services, it is possible that personal data are transferred to the USA. For companies certified under the EU-U.S. Data Privacy Framework — such as Google LLC — an adequacy decision pursuant to Art. 45 GDPR exists. You can find Google’s certification here:
https://www.dataprivacyframework.gov/list
More information about Google’s privacy framework can be found at:
https://policies.google.com/privacy/frameworks
Data that may be processed include:

IP address
Location data
Device information
Cookies and similar technologies
Query content (e.g., search terms)

If you are logged into your Google account, Google may associate the data with your account. You can prevent this by logging out before visiting our website.
More information on how Google processes personal data:
https://www.google.com/policies/privacy/
Privacy settings: https://privacy.google.com/take-control.html

Google Analytics and Google Optimize
To evaluate and optimize our website, we use Google Analytics and Google Optimize. The legal basis is your consent pursuant to Art. 6(1)(a) GDPR.

The following data are collected:

Browser and operating system information
Anonymized IP address
Referrer URL
User behavior (e.g., duration, clicks, conversions)

The data are processed in pseudonymized form. Google does not combine your IP address with other data.
You can revoke your consent at any time, e.g., via cookie settings or by using the opt-out browser plugin:
https://tools.google.com/dlpage/gaoptout
Further details:
https://support.google.com/analytics/answer/6004245

Google Signals
We use Google Signals to obtain cross-device reports if you have logged into your Google account and enabled personalized advertising. Data are collected based on your consent pursuant to Art. 6(1)(a) GDPR.

You can deactivate this via:
https://support.google.com/My-Ad-Center-Help/answer/12155154
More info: https://support.google.com/analytics/answer/7532985

Google Tag Manager
We use Google Tag Manager to efficiently manage scripts and tools on our website. Tag Manager itself does not process personal data but may trigger other services that do.

Legal basis: Art. 6(1)(a) GDPR (consent)
Details: https://support.google.com/tagmanager/answer/9323295

Google Ads (Conversion Tracking)
We use Google Ads to display targeted advertising and measure the success of ad campaigns.

The following data may be collected via conversion cookies:

IP address
Cookie ID
Date and time of interaction
Pages and content viewed

Processing is based on your consent (Art. 6(1)(a) GDPR). The cookie expires after one year.
Opt-out options:

Adjust cookie settings
Google Ad settings: https://adssettings.google.de/anonymous

We also use Adobe Fonts for consistent and attractive display of content. This service is provided by Adobe Systems Software Ireland Limited, with possible access by Adobe Inc., USA. IP addresses may be transmitted to Adobe.
Adobe is certified under the EU-U.S. Data Privacy Framework. See certifications:
https://www.dataprivacyframework.gov/list
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in web optimization)
More on Adobe Fonts privacy:
https://www.adobe.com/privacy/policies/adobe-fonts.html
To block external fonts, you may use browser extensions like NoScript or Ghostery. Note: This may affect website display.
XIII. Use of Meta Pixel (Facebook/Instagram)
We use the Meta Pixel provided by Meta Platforms Ireland Ltd. (formerly Facebook), 4 Grand Canal Square, Dublin 2, Ireland. This tool helps us understand how visitors use our site and display targeted advertising on Facebook and Instagram.
The Pixel is a small, invisible graphic loaded when you visit our site. The following data may be transmitted to Meta:

IP address
Browser and device info
Pages visited and time of visit
Cookie ID

This allows Meta to assign users to custom audiences for targeted ads. This helps us show ads to people who are likely to be interested in our content.
Use of the Meta Pixel only occurs with your prior consent (Art. 6(1)(a) GDPR). You can withdraw this consent at any time via cookie settings.
Data may also be transferred to Meta in the USA. Meta is certified under the EU-U.S. Data Privacy Framework, providing adequate protection.
More information:
https://www.facebook.com/privacy/policy

XIV. Use of TikTok Pixel
We also use the TikTok Pixel, provided by TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, Ireland. This tool allows us to measure the effectiveness of our advertising campaigns on TikTok.
When you consent, your browser establishes a connection to TikTok’s servers. The following data may be transmitted:

IP address
Browser and device information
Pages visited
Timestamps of interactions

TikTok uses this data to determine whether you visited our site after clicking an ad and to serve personalized ads.
Processing occurs only with your explicit consent (Art. 6(1)(a) GDPR), which you may withdraw at any time via cookie settings.
Some of the collected data may be transmitted to countries outside the EU, such as the United States, Malaysia, or Singapore. As some of these countries lack an EU adequacy decision, TikTok ensures data protection via Standard Contractual Clauses (SCCs) pursuant to Art. 46 GDPR.
More information is available at:
https://www.tiktok.com/legal/page/eea/privacy-policy/en
XV. Use of Reddit Pixel
To analyze the effectiveness of our advertising, we use the Reddit Pixel provided by Reddit Inc., 548 Market St. #16093, San Francisco, CA 94104, USA. This pixel is a tracking tool that is triggered when our website is accessed.
The following information may be transmitted:

IP address
Device and browser characteristics
Pages visited
Date and time of visit

Reddit uses these data to display ads more accurately and to measure performance. The data are anonymized for our use.
This service is only used with your explicit consent (Art. 6(1)(a) GDPR). You can revoke your consent at any time via the cookie settings.
Since Reddit is based in the USA, data transfers to a third country may occur. Reddit is currently not certified under the EU-U.S. Data Privacy Framework. We have therefore entered into Standard Contractual Clauses (SCCs) with Reddit to ensure an adequate level of protection.
More information about Reddit's data processing can be found here:
https://www.reddit.com/policies/privacy-policy

XVI. Protection of Your Data (Technical and Organizational Measures)
To protect your personal data, we implement modern security measures that are in line with the current state of technology. This includes, in particular, encrypted data transmission via HTTPS (e.g., using SSL/TLS), to prevent unauthorized parties from accessing transmitted content such as messages or media files.
Despite technical precautions, the complete protection of data during transmission on the Internet cannot be guaranteed. Risks — such as during email communication — can never be entirely ruled out.
We therefore recommend:

Keeping your login credentials safe
Not sharing your password with anyone
Logging out of your account after each session

These measures help ensure the confidentiality, integrity, and availability of your data when using our platform.
XVII. Duration of Storage and Data Deletion
We store personal data only as long as necessary to fulfill the respective purpose of processing — such as for contract execution, legal obligations, or the safeguarding of legitimate interests.
Once the purpose no longer applies or statutory retention periods (e.g., under commercial or tax law) expire, we will delete or anonymize your data in accordance with legal requirements.
Longer retention periods may apply only:

If legally required
If you have expressly consented to longer storage

We regularly review stored data and delete them following the principles of data minimization and storage limitationpursuant to GDPR.

XVIII. Your Data Protection Rights under the GDPR
In connection with the processing of your personal data, you have various rights as a data subject under the General Data Protection Regulation (GDPR), which you may exercise at any time:

Right of Access (Art. 15 GDPR): You have the right to obtain confirmation as to whether we process personal data about you. If this is the case, you are entitled to receive information about the data, the processing purposes, the recipients, the planned storage period, and your rights as a data subject.
Right to Rectification (Art. 16 GDPR): You may request the correction of inaccurate data or the completion of your personal data stored by us at any time.
Right to Erasure (Art. 17 GDPR): You can request the deletion of your personal data if the purpose of processing no longer applies, you have withdrawn your consent, or if the data processing is otherwise unlawful. This right may be restricted if statutory retention periods apply.
Right to Restriction of Processing (Art. 18 GDPR): Under certain circumstances, you may request that we restrict the processing of your personal data. This may apply, for example, if the accuracy of the data is contested or the processing is unlawful and you oppose erasure.
Right to Data Portability (Art. 20 GDPR): You have the right to receive the personal data concerning you in a structured, commonly used, and machine-readable format, or to have it transmitted to another controller, where technically feasible.
Right to Object (Art. 21 GDPR): You may object to the processing of your personal data at any time for reasons relating to your particular situation, if the processing is based on our legitimate interests.
Right to Withdraw Consent (Art. 7(3) GDPR): If you have given us your consent to process personal data, you may withdraw this consent at any time with effect for the future. The lawfulness of data processing carried out until the withdrawal remains unaffected.
Right to Lodge a Complaint (Art. 77 GDPR): If you believe that the processing of your personal data violates data protection law, you have the right to lodge a complaint with a supervisory authority. This can be the supervisory authority at your place of residence or workplace, or the authority responsible for us.

You can assert your rights by contacting us or our Data Protection Officer (see Sections I and II).
XIX. Changes to this Privacy Policy
We reserve the right to update or modify this Privacy Policy so that it always complies with the current legal requirements or to reflect changes in our services — for example, when introducing new features or technologies.
The most current version of the Privacy Policy applies upon your next visit.
We will notify you in advance on our website about any significant changes.
We recommend that you review this Privacy Policy regularly to stay informed about how we protect the personal data we collect.

Last updated: July 2025