Privacy Policy

1. General and Mandatory Information

The following information provides a simple overview of how we process your personal data. Personal data refers to all data with which you can be personally identified. This privacy policy explains what data we collect and how we use it. It also outlines the methods and purposes for such processing.

We, BLACKPIN GmbH, take the protection of your personal data very seriously. We handle your personal data confidentially and in accordance with legal data protection regulations.

Responsible Entity

BLACKPIN GmbH
Jägerstraße 2/1
73460 Hüttlingen

Mobile:

015755916071

Tel:

017622397188

E-mail:

info@blackpin.de

Registry court: Amtsgericht Ulm - HRB738691

The responsible entity is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g. names, email addresses, etc.).

Data Protection Officer:

We have appointed a Data Protection Officer for our company:

Sami Ehlhardt
Technische Akademie für berufliche Bildung
Schwäbisch Gmünd e. V.
Lorcher Straße 119
73529 Schwäbisch Gmünd

Telefon:

07171/31-4660

E-Mail:

Sami.Ehlhardt@technische-akademie.de

Rights of Data Subjects

Information, Deletion, and Correction

You have the right, in accordance with applicable legal provisions, to obtain free-of-charge information about your stored personal data, its origin, recipients, and the purpose of data processing. Additionally, you may have the right to correction or deletion of this data.

Right to Restriction of Processing

You have the right to request the restriction of the processing of your personal data. This means that your personal data will no longer be actively processed and will be kept in a restricted archive for legal reasons.

Right to Data Portability

You have the right to receive the personal data that we process automatically in a common, machine-readable format, either for yourself or for a third party. If you request the direct transfer of the data to another responsible party, we will comply with your request to the extent that it is technically feasible.

Right to Object to Data

Collection in Special Cases If data processing is based on Art. 6(1)(f) GDPR, you have the right to object at any time on grounds relating to your particular situation. If you object, we will no longer process your personal data, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims (objection pursuant to Art. 21(1) GDPR).

Withdrawal of Consent to Data Processing

You can revoke your consent to data processing at any time. The legality of processing carried out before the revocation remains unaffected.

Right to lodge a complaint with a data protection supervisory authority

In the event of violations of the GDPR, you have the right to lodge a complaint with a supervisory authority.

For this purpose, as well as for any further questions regarding personal data, you can contact us at any time via email at

datenschutz@blackpin.de

, or by mail to the responsible entity mentioned above.

2. Website

General

When you use this website, various personal data is collected. Please note that data transmission over the Internet (e.g., when communicating via email) may have security vulnerabilities. A complete protection of data against access by third parties is not possible.

How do we collect your data?

Your data is collected, in part, by you providing it to us. This can include data you enter into a contact form, for example. Automatically or with your consent, additional data is collected when you visit the website through our IT systems. These are primarily technical data. The collection of this data occurs automatically as soon as you enter this website.

What do we use your data for?

We use your data to ensure the error-free provision of the website and to offer our services to you optimally.

SSL/TLS encryption

For security reasons and to safeguard the confidentiality of transmitted content, such as orders or inquiries, this site employs SSL/TLS encryption. You can identify an encrypted connection by the change in the browser's address line from "http://" to "https://" and by the padlock symbol in your browser's address bar. When SSL/TLS encryption is activated, the data you transmit to us is secure and cannot be intercepted or read by third parties.

Cookies

Cookies used on this site:

Technically necessary:

1. Cookie Consent Manager CCM19

Publisher: Papoo Software & Media GmbH

Description: Used to store cookie consent - which cookies may be set. The status of the cookie settings can be predetermined for you. The data is stored in categories.

Link to Privacy Policy:

https://www.ccm19.de/datenschutzerklaerung.html

Legal Basis:
‍EU: Art. 6 Abs. 1 s. 1 lit. c DSGVO, § 25 (2.2) TTDSG
Schweiz: Art. 17 Satz 1 b.2) DSG

local storage:

Name Cookie	Purpose	Storage duration
ccm_consent	Is used to store the cookie consent agreement, specifying which cookies can be set.	1 Year

Analysis / Statistics:

1. Matomo

Publisher: InnoCraft

Description: Matomo uses cookies. For this purpose, the usage information generated by the cookie is transferred to our servers and stored there. The information generated by the cookie is used for statistical purposes and to improve the website and server.

Link to Privacy Policy:

https://matomo.org/privacy-policy

What data is collected?
Browser information; Date and time of visit; Usage data; Device information; Referrer URL; User Agent; Geographic location; Screen resolution; Time zone; Number of visits; User ID; Anonymous IP address; Page title; Clicked or downloaded files; Clicked links to external domains; Time of the user's first visit; Time of the user's previous visit; Page URL.

Purpose of data collection:
Advertising; Analysis; Optimization; Content delivery; Personalization; Payment; Cloud computing; Functionality; Website security; Online audio distribution; Tracking; Web hosting; Creation of individual user profiles and supplementation with personal data about me by the provider; Observation; Audience measurement; Session cookie: Anonymous key for secure user identification and cookie; Session handling; Cookie disclaimer; Session tracking.

Legal Basis:
‍EU: Art. 6 Abs. 1 s. 1 lit. a DSGVO
Schweiz: Art. 45c (b) FMG, Art. 17 Satz 1 a) DSG

Cookies:

Name	Purpose	Storage duration
_pk_testcookie	A cookie has been set and should be immediately deleted (used to check if the visitor's browser supports cookies).	1 Second
mtm_consent	mtm_consent (or mtm_consent_removed) is created with a duration of 30 years to remember whether the user has given (or withdrawn) consent.	Forever
MATOMO_SESSID	Matomo uses cookies. For this purpose, the usage information generated by the cookie is transferred to our servers and stored there. The information generated by the cookie is used for statistical purposes as well as to improve the website and server.	N.a
mtm_consent_removed	mtm_consent (or mtm_consent_removed) is created with a duration of 30 years to remember whether the user has given (or withdrawn) consent.	N.a
_pk_id.*	This cookie is used to record visitor behavior on the website. It is used to collect statistics on the usage of the website. Cookies do not contain personal data and are solely used for website analysis.	13 Months
_pk_ref.*	This cookie is used to store the login credentials of the referrer originally used to visit the website.	13 Months
_pk_ses.*	This cookie is used to record visitor behavior on the website. It is employed to gather statistics on the usage of the website. Cookies do not contain personal data and are solely utilized for website analysis.	30 Minutes
_pk_cvar.*	This cookie is inactive by default and needs to be activated through Matomo. It captures the custom variables generated during the previous page visit.	30 Minutes
_pk_hsr.*	To capture all page views within a session, a cookie is necessary. A cookie is generated when accessing the configured entry page.	30 Minutes

2.Piwik

Publisher: Piwik

Description: A Tag Manager is like a box where you can store code snippets and transfer them to your website or app. A code section, known as a Beacon, can, for example, collect data, install third-party tools, change the appearance of a website or app, and more. The Tag Manager continues to store the user's IP address, as the Tag Manager has requested content for the user. Additionally, all types of data can be processed by Tag Manager with additional supplementary services.

Link to Privacy Policy:

https://piwik.pro/privacy-policy/

Legal Basis:
‍EU: Art. 6 Abs. 1 s. 1 lit. a DSGVO
Schweiz: Art. 45c (b) FMG, Art. 17 Satz 1 a) DSG

Cookies:

Name	Purpose	Storage duration
stg_traffic_source_priority	Stores traffic source types that describe how visitors arrived at your website.	30 Minutes
stg_last_interaction	Determines whether the session of the last visitor is still ongoing or if a new session has started.	365 Days
stg_returning_visitor	Determines whether a visitor has previously visited your website – these are returning visitors.	365 Days
stg_externalReferrer	Stores the URL of the website that referred visitors to your site.	Session
_pk_testcookie.1.d8de	Is used to determine if the browser is configured to block or allow cookies	N.a
_stg_debug / stg_debug	Indicates whether the Tag Manager debugger should be displayed. Cookies are deleted when the debugger is closed.	14 Days
stg_fired__<*>	Determines whether the combination of tag and trigger was fired during the current visitor session.	Session
stg_utm_campaign	Records the name of the event that brought visitors to your website.	Session
stg_pk_campaign	Records the name of the event that brought visitors to your website.	Session
_stg_opt_out_simulate	Is used to simulate the deactivation behavior of fragments in the debugger. This deactivates all tracking tags on the test domain.	1 Year
_stg_optout	Is used to deactivate all tracking tags on the test domain.	1 Year
stg_global_opt_out (deprecated)	Is used to deactivate all tracking tags on websites associated with a Piwik PRO account.	1 Year

Local Storage:

Name	Purpose	Storage duration
ppms_webstorage	VPrevents the loss of visitor data due to certain mechanisms used by browsers, such as ITP for Safari.	Persistent

External Hosting

This website is hosted by an external service provider (Webflow). The personal data collected on this website is stored on the servers of the hosting provider.

This may include, in particular, IP addresses, contact requests, meta and communication data, contract data, contact details, names, website access, and other data generated through a website.

The use of the hosting service is based on our legitimate interest in the secure, fast, and efficient provision of our online offering by a professional provider (Art. 6(1)(f) GDPR). The hosting provider processes your data to display our website.

Server Log Files (Webflow)

Our website automatically collects and stores information in so-called server log files that your browser automatically transmits to us. These are:

Browser type and browser version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address
Installed fonts
Mime-types
Browser language and time zone
Silverlight data
Installed plugins
HTTP headers
Screen resolution

These data are not merged with other data sources. The collection of this data is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the technically flawless presentation and optimization of our website, for which the server log files must be recorded.

Inquiry via Email, Phone, or Contact Form

When you contact us via email or phone or use the contact form, your inquiry, including all resulting personal data (e.g. name, inquiry), is stored and processed by us for the purpose of handling your request and in case of follow-up questions. The processing of this data is based on Art. 6(1)(b) GDPR if your inquiry is related to the performance of a contract or necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of inquiries directed to us under Art. 6(1)(f) GDPR, or on your consent under Art. 6(1)(a) GDPR if requested. The data you send to us via contact inquiries or enter into the contact form will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g. after the completion of your request). If this occurs, the data will be deleted. Mandatory legal provisions – especially retention periods – remain unaffected.

3. Social Media

We maintain accounts, pages, or channels on the social networks listed below to provide you with information and offers within social networks and to offer you additional ways to contact us. The legal basis is Art. 6(1)(f) GDPR. We have a legitimate interest in presenting our offering on selected social media platforms.

Data we receive from you and process:

When you contact us via direct message, we usually process your username, through which you contact us, and may store other information you provide as necessary for processing/responding to your request. The legal basis for this is Art. 6(1)(a), (b), and (f) GDPR. There is a legitimate interest in the effective processing of inquiries directed to us.

(Statistical) Usage data we receive from social networks:

We automatically receive statistical values regarding our account through certain functionalities. The statistics include, among others, "likes," page activities, post interactions, reach, video views, and information about the proportion of men/women among our followers.

Data processed by social networks from you:

To view the content of our accounts, you do not need to be a member of the social network. Please note that social networks process data even without a user account. This involves the use of cookies and similar technologies, over which we have no control. Details can be found in the privacy policies of the respective social network. Once you want to interact with the content on our accounts, prior registration with the respective social network and providing personal data is necessary. It cannot be ruled out that your data may be stored outside the EU and shared with third parties.

YouTube

We have embedded YouTube videos on our website. YouTube is a video platform provided by Google LLC, where users can upload, share content over the internet, and receive detailed statistics. YouTube allows us to directly embed content on the website. Your consent is required to start these YouTube videos. If you have already granted this consent through the displayed cookie banner, you can directly start these YouTube videos. If you have not granted this consent yet, an request for consent will appear initially. The consent can be revoked at any time or disabled by you in the settings.

YouTube uses cookies and other technologies to analyze user behavior, recognize users, and create user profiles. This information is used, among other things, to analyze and evaluate the activity of the content. If a user is registered with YouTube, YouTube can assign the played videos to the user's profile. When you access this content, a connection is made to servers of Google LLC, resulting in the transmission of further partially personal data.

The provision of content is based on your consent under Art. 6(1)(a) GDPR. The use of the service is based on our legitimate interests, i.e., an interest in providing platform-independent content under Art. 6(1)(f) GDPR. The specific storage duration of the processed data is not influenced by us but determined by Google LLC.

Further information can be found in the privacy policy for YouTube videos:

Youtube Privacy Policy

More information on data protection at YouTube:

Youtube privacy settings

Instagram

Instagram is a social media platform operated by Meta Platforms Inc., 1601 Willow Rd, Menlo Park CA 94025, represented by Meta Platforms Ireland Limited. When visiting these pages, Meta Inc. collects your IP address and other information stored in the form of cookies on your device. This information is used to provide statistical information about the usage to us as the operator of the pages.

For more information, please refer to:

Instagram data policy

Through the transmitted statistical information, we cannot draw conclusions about individual users. We use this information only to address the interests of our users and continuously improve and maintain the quality of our online presence. We collect your data through our account only to facilitate possible communication and interaction with us. This collection typically includes your name, message content, comment content, and possibly the profile information you "publicly" provide.

The processing of your personal data for the above-mentioned purposes is based on our legitimate interest in offering an information and communication channel under Art. 6(1)(f) GDPR. If you, as a user, have given consent to the data processing to the social network, the legal basis for processing is Art. 6(1)(a).

Due to the fact that the actual data processing is carried out by Meta Inc., our access to your data is limited. Only the provider has complete access to your data. Therefore, the most effective way to assert your rights (request for information, deletion request, objection, etc.) is to contact the respective provider directly:

Instagram Privacy Policy

We are jointly responsible with Meta Inc. for the personal content of our account.

The primary responsibility for the processing of Insights data (Instagram's statistical function) lies in accordance with the GDPR with Meta Inc. Thus, Meta Inc. must ensure all obligations under the GDPR regarding the processing of Insights data. We do not make decisions regarding the processing of Insights data and all other information arising from Art. 13 GDPR, including legal bases, identity of the controller, storage duration of cookies on user devices, etc.

Any inquiries regarding this can be directly addressed to Meta Platforms Ireland Limited through the following link:

Contact Meta Platforms Ireland Unlimited

Facebook

Facebook is a social media platform operated by Meta Platforms Inc., 1601 Willow Rd, Menlo Park CA 94025, represented by Meta Platforms Ireland Limited. When visiting these pages, Meta Inc. collects your IP address and other information stored in the form of cookies on your device. This information is used to provide statistical information about the usage to us as the operator of the pages. For more information, please refer to:

Facebook Data Policy

Facebook Privacy Policy

We are jointly responsible with Meta Inc. for the personal content of our account.

The primary responsibility for the processing of Insights data (Facebook's statistical function) lies in accordance with the GDPR with Meta Inc. Thus, Meta Inc. must ensure all obligations under the GDPR regarding the processing of Insights data. We do not make decisions regarding the processing of Insights data and all other information arising from Art. 13 GDPR, including legal bases, identity of the controller, storage duration of cookies on user devices, etc.

Any inquiries regarding this can be directly addressed to Meta Platforms Ireland Limited through the following link:

Contact Meta Platforms Ireland Unlimited

LinkedIn is a social network operated by LinkedIn Inc., headquartered in Sunnyvale, California, USA, allowing users to create private and professional profiles. Users can maintain existing contacts and establish new ones. Companies can create profiles where they can upload photos and other company information. Other LinkedIn users have access to this information and can write their own articles and share this content with others.

The focus is on professional exchange on specific topics with people who share the same professional interests. Furthermore, LinkedIn is often used by companies and other organizations to hire employees and present themselves as an attractive employer. The legal basis is Art. 6(1)(f) GDPR (processing is necessary to safeguard the legitimate interests of the data controller).

For more information about LinkedIn, visit:

For more information about privacy at LinkedIn, visit:

LinkedIn Privacy Policy

We do not collect and process any personal data via our LinkedIn company page.

X (formerly Twitter)

The X account is an online presence within the platform operated by X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, U.S.A..

Responsible for data processing for individuals living outside the United States is Twitter International Company (hereinafter "Twitter")

One Cumberland
Place Fenian Street
Dublin 2 D02 AX07
Irland

Wir weisen Sie darauf hin, dass Sie den hier angebotenen X-Kurznachrichtendienst und dessen Funktionen in eigener Verantwortung nutzen. Dies gilt insbesondere für die Nutzung der interaktiven Funktionen (zum Beispiel Teilen, Bewerten).

Please note that you use the X short message service and its functions at your own risk. This applies in particular to the use of interactive functions (e.g., sharing, rating).

It is important to note that X collects and processes certain information about your visit to our X page, even if you do not have an X user account or are not logged into X. Details about the processing of personal data by X can be found in X's privacy policy at:,

Twitter (X) Privacy Policy

For us as the operator of this X page, only your public profile on X is visible, depending on your settings. In addition, we process your personal data, such as your name and the content of your messages, inquiries, or contributions to us, when you contact us via our X page. This data is processed to process your contributions and, if necessary, to respond to them. The processing is either based on our legitimate interest pursuant to Art. 6(1)(f) GDPR, especially to get in touch with you, or on the basis of Art. 6(1)(b) GDPR if your request aims at concluding a contract with us.

In addition, X provides us with analytics data that represents anonymous statistics and allows us to evaluate the quality of our X page and our content. These statistics are based on usage data that X collects about your interaction with our X-site and to which we have no direct access.

This processing is based on our legitimate interest in accordance with Art. 6 (1) (f) GDPR, in particular to recognize user preferences and to adapt and improve the offer on our X-site to suit the target group.

We store your personal data outside of X on our systems for as long as it is required for the purposes for which it was collected or for as long as there are statutory retention obligations.