Privacy policy

This privacy statement provides you with an overview of how your personal data is processed when you browse the website available at www.myhood.com ("Website"), use the myhood iOS or Android app or make use of the services offered as part of the myhood platform (the app together with the Website collectively the "Services"). This Privacy Policy also informs you about your rights under the EU General Data Protection Regulation ("GDPR") and the choices you have to manage your personal data and protect your privacy.

I. Data controllers and contact with the data protection officers The person responsible for the website as well as for the services is the Myhood GmbH Ebertystr. 21 D-10249 Berlin E-mail: support@myhood.com Our data protection officer can be reached at info@hdrcontrol.de.

II. processing of personal data

1. data that we process when you call up our services:

When you use our services, personal data is processed each time you access them for technical reasons. As soon as you use our services, your browser or end device sends technical information to our web server, which is stored in server log files. The following usage and web access data is processed in the process:

· the date and time of the visit and the duration of the use of the website;

· the IP address or client ID of your machine. ;

· the referral URL (the website from which you may have been referred);

· the sub-pages visited on the website;

· and other information about your device (device type, browser type and version, settings, plug-ins installed, operating system). This so-called usage data is processed exclusively in pseudonymous form to enable you to use the services and to ensure the functionality of the services. As a matter of principle, the data is not used to identify you as a person. In addition, we process the pseudonymous usage data to analyse the performance of the website, to continuously improve the website and to correct errors or to personalise the content of the website for you. Finally, we also process the usage data to ensure IT security and the operation of our systems and to prevent or detect misuse, in particular fraud. These server log files are deleted after a maximum of 7 days. The legal basis for processing this data is Art. 6 (1) lit. f) DSGVO, the protection and functionality of the services are legitimate interests in this sense. Cookies and other tracking tools: We use cookies to enable the technical functions for the automatic processing of usage data. You can find more information here.

2. data that we process in the provision of our services:

In addition, we only process other personal data when you use our services. These are: · Your registration data (e.g. name, address, e-mail address, etc.)

· the content data uploaded by you to our services (e.g. offers, texts, posts, communications, images and videos, but also information about yourself)

· Usage data (e.g. time of registration, logins etc.) and usage behaviour (e.g. interactions with profiles and pages)

We process this data if you wish to register in order to enable you to use our services and to communicate with other users of the services there. In addition, we use this information for statistical purposes and to present you with personalised content. For this purpose, we also make certain evaluations available to other users whose products and content you might probably be interested in. Finally, we also process this data in order to detect and correct errors, to improve the service or, in individual cases, to prevent use in breach of contract or the law. If you wish to submit a product review, we will process your name and, if applicable, other personal data that you provide as part of the review and publish it under the reviewed product. The legal basis for the processing within the scope of the use of our services is Art. 6 (1) lit. b) DSGVO with regard to the provision of the services and content, and Art. 6 (1) lit. f) DSGVO with regard to the other purposes. Our legitimate interests are to be able to offer, improve, market and protect our services, and we also process the ratings in the interest of our users.

3. data that we process for the purposes of communication

Newsletter

If you register for our newsletter, we process your email address for the purpose of sending it. You will then receive a registration notification by e-mail, which you must confirm in order to receive the newsletter (so-called double opt-in). This serves as proof for us that the registration was actually initiated by you.

The legal basis is your consent, Art. 6 (1) lit. a) DSGVO. You can revoke your consent at any time, e.g. via the unsubscribe link at the end of each newsletter.

Contact form

If you contact us with a general enquiry via the contact form provided on our site, we need your contact details and information on what it is about in order to be able to answer your enquiry. Data processing for the purpose of contacting us is carried out in response to your enquiry and on the basis of Art. 6 (1) sentence 1 lit. b DSGVO or to protect our legitimate interests pursuant to Art. 6 (1) sentence 1 lit. f DSGVO. Our legitimate interest is to be able to respond to enquiries from our customers and thus to ensure a functioning customer service.

Chat

On myhood, it is possible to start a direct chat with other participants. Based on your consent, we process the information that you want to make available to other users via this function and store the content until revoked so that you can link up with older conversations. The processing is carried out by us on servers in Germany.

Participants may be notified of new messages via the email address linked to their user account if they are not currently logged in.

4. data that we process for other purposes

Raffles

When you enter a competition website, we collect the data from you that is required for participation in the competition (e.g. surname, first name and e-mail address), among other things to determine whether you are eligible to participate and to determine and notify the winners. If you do not provide us with the above-mentioned data, it will not be possible for you to participate in the competition or to contact us regarding notification of a win. In the event that you receive a prize as part of participating in the competition, it may be necessary to pass on your data to the partner providing the prize or organising the competition so that they can send you the prize.

The data processing is carried out in response to your request and is necessary in accordance with Art. 6 (1) sentence 1 lit. b and lit. f DSGVO for the aforementioned purposes for the fulfilment of the contract and for other pre-contractual measures as well as our legitimate interests in the aforementioned purposes of processing.

If you have not won, your data processed exclusively in connection with the competition will be deleted immediately, at the latest 30 days after the winner has been confirmed.

For other purposes

In individual cases, your data may also be processed for other purposes. This includes, for example, the disclosure of your personal data to third parties if we are legally obliged to do so, but also for the purpose of asserting legal claims on our part or on the part of third parties or defending legal disputes. In these cases, the legal basis is either a legal obligation (Art. 6 (1) lit. c) DSGVO) or our legitimate interests or legitimate third-party interests (Art. 6 (1) lit. f) DSGVO), e.g. if we support users in enforcing rights.

5. data that we do not collect ourselves but process

We may also process personal data that we do not collect from the data subject ourselves, for example when our users share certain information about third parties. , if we adopt or integrate other applications and functions from third-party providers, or if you log in to us with another account, for example. We process this data on the basis of Art. 6 (1) sentence 1 lit. f DSGVO and our legitimate interests in being able to maintain, adapt and expand our offer for our users.

6. disclosure of personal data / recipients

We treat your personal data carefully and confidentially and only pass it on to third parties in the rarest of cases. When our partners or service providers process personal data, they do so only on the basis of data protection contracts in which they undertake to comply with strict contractual obligations to protect your data (including, but not limited to, compliance with this Privacy Policy).

Data recipients also include the service providers mentioned in our overview of cookies and analytics tools. Detailed information about these providers can be found in the information about cookies, web analytics and other tracking technologies at the end of this privacy policy.

Data transfers outside the EEA:

We do not transfer your personal data to countries outside the EEA (so-called "third countries") without taking appropriate protective measures. Nevertheless, third countries do not offer a level of data protection identical to that in the EU.

We only transmit your personal data if

· The Commission has taken a so-called adequacy decision for the third country or the recipient in that third country,

· sufficient safeguards are provided by the recipient in accordance with Art. 46 GDPR for the protection of the personal data (including any necessary additional measures),

· you have expressly consented to the transfer, after we have informed you of the risks, in accordance with Art. 49 (1) lit. a) DSGVO,

· the transfer is necessary for the performance of contractual obligations between you and us

· or another exception from Article 49 of the GDPR applies. Guarantees according to Art. 46 GDPR can be so-called standard contractual clauses. In these standard contractual clauses, the recipient assures to sufficiently protect the data and thus to guarantee a level of protection comparable to the GDPR.

Purposes and recipients

• Hosting of the systems and this website Recipient:
• Amazon Web Services EMEA Sàrl, Avenue John F. Kennedy 38, 1855 Luxembourg, Luxembourg
• Guarantees: We have chosen a server location within the EU. Data transfers to the USA only take place in exceptional cases based on standard contractual clauses and encryption.

Login with Facebook

When you click on the "Log in with Facebook" button during registration, we only receive the following data after your express consent:

· Name (as entered on Facebook),

· Email address (if entered on Facebook),

· Profile picture (if available)

When you call up the registration dialogue, you leave MyHood and call up the website of the respective provider (here: Meta Platforms Ireland Ltd. 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland). Details on the data processing at Meta can be found in the provider's privacy policy.

Login with Google

When you click on the "Log in with Facebook" button during registration, we only receive the following data after your express consent:

· Name (as entered on Google),

· E-mail address (if entered on Google),

· Profile picture (if available)

When you call up the registration dialogue, you leave MyHood and call up the website of the respective provider (here: Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland). Details on how Google processes data can be found in the provider's privacy policy.

Login with Apple

When you click on the "Log in with Apple" button during registration, we receive the following data only after your express consent:

· Name (as entered at Apple),

· Email address (if entered at Apple),

· Profile picture (if available)

When you call up the registration dialogue, you leave MyHood and call up the website of the respective provider (here: Apple Inc. , One Apple Park Way, Cupertino, California, USA, 95014). Details on how Apple processes your data can be found in the provider's privacy policy.

Reporting and tracking bugs with Marker.io

Processed data:

It processes and shares the data from marker.io that you enter in the marker.io dialogue on the MyHood website itself, as well as the IP address:

· Your name (no requirement to use a clear name)

· Your email address

· Your IP address

· The description text you entered

· Screenshot of the MyHood website at the time of calling up marker.io via the "Report error" button incl. screen resolution

· Operating system and browser used Recipient: Marker.io, Quai Paul Verlaine 2 - box 2, 6000 Charleroi, Belgium Reporting and tracking bugs with Shakebugs Data processed: It processes and shares the data from Shakebugs that you enter in the Shakebugs dialogue in the MyHood App and the IP address:

· Your name (no requirement to use a clear name)

· Your email address

· Your IP address

· The description text you entered

· Screenshot of the MyHood website at the time of calling up marker.io via the "Report error" button incl. screen resolution

· Operating system and terminal used

· Version of the MyHood App

· Allowed app permissions (access to location y/n, access to photo album y/n)

· Connection type (W-LAN or mobile data)

· Time zone

· Country and language setting (e.g. German, Germany)

· Battery charge tantus (e.g. 64%, on current / not on current)

· Memory (total and used capacity in GB)

Recipient: Shake Technologies, Inc., based in the USA.

Guarantees: EU standard contractual clauses

Handling support requests and bug reports via marker.io and Shakebugs with Atlassian Jira

Super requests sent via email to support@myhood.com, bug tickets via Marker.io and shakebugs are processed in the Atlassian ticket system Jira.

Processed data: Your email address and the text of your email as well as all data collected via Shakebugs and marker.io excl. IP address.

Recipient: Atlassian. Pty Ltd, Level 6, 341 George Street, Sydney NSW 2000 Australia

Guarantees: EU standard contractual clauses

7. newsleter dispatch and evaluation with Sendinblue

Recipient Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany. You can unsubscribe from our newsletters at any time.

8. duration of storage:

We process and store your personal data to the extent necessary to fulfil our contractual or legal obligations. Therefore, we store the data for the duration of the contractual relationship with you and after termination only to the extent and for as long as required by law. If the data is no longer required to fulfil legal obligations (e.g. tax or commercial law), it will be deleted, unless further processing is necessary to preserve evidence or to defend legal claims against us, unless the processing is based on your consent. In this case, we store your data until revoked.

9. third-party content within our services (plugins)

YouTube videos

We enable videos from YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, USA (hereinafter: "YouTube"), a Google company, to be integrated within our services. The integration is based on Art. 6 (1) lit. f) DSGVO, whereby the legitimate interest is to be seen in an appropriate product presentation of our professional users. In doing so, we use the "extended data protection mode" option provided by YouTube. When you visit a page that has an embedded video, a connection is established to the YouTube servers and the content is displayed on the website by informing your browser. According to YouTube's information, in "extended data protection mode" your data - in particular which of our websites you have visited as well as device-specific information including the IP address - is only transmitted to the YouTube server in the USA when you watch the video. Cookies are not set in the process. If you are logged in to YouTube at the same time, this information will be assigned to your YouTube member account. You can prevent this by logging out of your member account before visiting our website.

Google Maps and Google Places We use the Google Maps service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA on our website to display an interactive map. Due to the implementation, Google collects device-related information, log data including the IP address as well as location-related information. No data is transmitted to Google simply by calling up our website. Only by clicking on the map do you activate the interactive map from Google Maps and thus consent to the transmission of data to Google. The processing of personal data by Google takes place under Google's own responsibility on the basis of the standard data protection clauses of the European Commission pursuant to Art. 46 (2) lit. c) DSGVO. Google uses the personal data to evaluate the use of the website, to compile reports on website activity and to provide other services associated with the use of the website and the internet for the purposes of market research and demand-oriented design of these web pages. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. You can prevent any data transfer from the Google Maps application to Google's servers by deactivating JavaScript in your browser. In this case, however, you will not be able to use the map display. Further information on data protection in connection with Google Maps can be found in the Datenschutzerklärung von Google.

10. your legal rights under the GDPR:

You have the following rights towards us:

Your right to information and disclosure in accordance with Art. 15 DSGVO, in particular you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details. Your right to rectification in accordance with Art. 16 DSGVO, e.g. if your data is incomplete or incorrect, you can ask us to correct it. Your right to erasure in accordance with Art. 17 DSGVO if this is not (any longer) necessary for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims. Your right to restriction of processing pursuant to Art. 18 DSGVO. You can request that your data be blocked, e.g. because you are of the opinion that the data is incorrect or the processing is unlawful, but you object to its deletion because you need it to assert, exercise or defend legal claims or you have objected to the processing in accordance with Art. 21 DSGVO. Your right to data portability pursuant to Art. 20 DSGVO. You can request that we hand over data that you have provided to us in a structured, common and machine-readable format or transfer it to another person responsible. Finally, you also have the right to lodge a complaint with the competent data protection supervisory authority (Art. 77 GDPR). You can file this complaint both at your place of residence, at your place of work or at the place of the data protection breach you are complaining about. You can also file a complaint with the supervisory authority at our registered offices. You can also revoke your consent at any time. However, this revocation only applies for the future. Any processing that took place before the revocation remains unaffected. If you wish to exercise your rights as a data subject, you can also do so by contacting us: gdpr@myhood.com Information about your right to object according to Art. 21 DSGVO In addition to the rights already mentioned, you have the right to object to the processing of your personal data at any time on grounds relating to your particular situation, provided that such processing is based on Art. 6 (1) lit. f) DSGVO (data processing on the basis of a balance of interests). If you object, we will no longer process your personal data unless we can demonstrate circumstances that override your interests, rights and freedoms and therefore justify the processing. You also have the right to object at any time to the processing of your personal data for the purpose of direct marketing (including the subscription to our newsletter) without incurring any costs other than the transmission costs according to the base rates; this also applies to the creation of a user profile (so-called "profiling"), insofar as this is associated with direct marketing. If you object, we will no longer process your personal data in the future. Please note that you may not be able to use the website or services, or only to a limited extent, if you do not provide us with certain data or if you object to the use of this data. The objection can be submitted informally to gdpr@myhood.com.

The use of cookies, web analytics and other tracking tools on our website and services When using our services, usage data is collected within the scope of so-called "web tracking". This means that the behaviour of certain users can be tracked pseudonymously in order to improve and personalise our services and optimise the display of advertising. We also use cookies and comparable technologies for this purpose. What are Cookies ? Cookies are small text files containing information that are stored on your access device. They are usually used to associate a user with a particular action or preference on a website, but without identifying the user as a person or revealing their identity. Cookies are not automatically good or bad, but it is worth understanding what you can do about them and making your own decisions about your data. We use the following types of cookies, the scope and functionality of which are explained below: Session cookies and persistent cookies. Session cookies are automatically deleted when you close your browser. This applies in particular to session cookies. They store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This enables your computer to be recognised when you return to our website. Session cookies are deleted when you log out or close your browser. Persistent cookies are also initially stored when you close your browser and then automatically deleted after a certain period of time, which can vary depending on the cookie. You can also delete the cookies at any time in the security settings of your browser. You can reset your browser before or after your visit to our website so that all cookies are rejected or to indicate when a cookie is sent. By default, the setting of cookies can be managed by the browser programme of your browser, also so that no cookies can be set at all or that cookies are deleted again. Your browser may also have a function for anonymous surfing. You can use these functions of your browser yourself at any time. However, if you have disabled the setting of cookies in your browser by default, our website or services may not function properly.

In addition to cookies, we also use other technologies for tracking users. These include so-called pixel tags (also known as "web beacons", "GIFs" or "bugs"). What are Pixel Tags? Pixel tags are transparent one-pixel images that are located on the website. They track, for example, whether a certain area of the website has been clicked on. When triggered, the pixel tag logs a user interaction and can read or set cookies. Because pixels often rely on cookies to work, turning cookies off can interfere with them. But even if you turn off cookies, pixels can still recognise a website visit. The pixels send your IP address, the referrer URL of the website visited, the time at which the pixel was viewed, the browser used, and previously set cookie information to a web server. This makes it possible to carry out reach measurements and other statistical evaluations, which serve to optimise our offer. We also use so-called Software Developer Kits (SDKs) for our services. SDKs are pieces of code provided by our vendors (e.g. third-party advertising, ad networks and analytics providers) in our mobile apps to collect and analyse certain device and user data.

Purposes and legal basis The use of these technologies serves, on the one hand, to make the use of our services more pleasant for you. For example, we use session cookies to recognise that you have already visited individual pages of our services, that you have already logged into your user account or for shopping cart display. These are automatically deleted after you leave our site. In addition, we also use temporary cookies to optimise user-friendliness, which are stored on your end device for a certain fixed period of time. If you visit our site again to use our services, it is automatically recognised that you have already been with us and which entries and settings you have made so that you do not have to enter them again. The data processed by these cookies is necessary for the aforementioned purposes to protect our legitimate interests and those of third parties in accordance with Art. 6 (1) lit. f) DSGVO. On the other hand, we use these technologies - subject to your consent - to statistically record the use of our website and to evaluate it for the purpose of optimising our offer as well as to provide you with advertising on third-party sites. The prerequisite for this is that you have previously given us consent in accordance with Art. 6 (1) lit. a DSGVO via the cookie management tool. You can revoke your consent for the future at any time by accessing "Cookie settings" at the bottom of the website to check and adjust your consent settings. For more information about each cookie we use, please visit our Consent Manager, .

https://www.myhood.com/users/me/settings?tab=cookies

Google Analytics with Remarketing and Google Tag Manager We use Google Analytics, a service provided by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland ("Google Ireland"), a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 ("Google"), based on your consent. Google Analytics uses cookies and helps us analyse the number of users and the general behaviour of visitors to our website. The information generated by the cookie about your use of our website (identifier, browser type/version, operating system used, referrer URL, shortened IP address, time of server request) is usually transmitted to a Google server in the USA and stored there. However, in the Member States of the European Union or in other signatory states to the Agreement on the European Economic Area, your IP address will first be shortened by Google on our website. For this purpose, we have implemented the code "gat._anonymizeIp() ;" to ensure anonymous collection of IP addresses (so-called IP masking). Only in exceptional cases will the full IP address be transferred to a Google server in the USA and abbreviated there. If, in exceptional cases, personal data is transferred to the USA, Google guarantees a level of data protection under the EU standard contractual clauses that corresponds to the level of data protection in the EU. Google will use the information about your use of the website on our behalf within the framework of Google Analytics to evaluate your use of the website, to compile reports about website activity and to provide other services in connection with website activity and internet use. The IP address transmitted by your browser as part of Google Analytics and Google Tag Manager will not be combined by us with any other data held by Google. In addition, we use the Google Remarketing Pixel, which enables us to address you on other websites with content relevant to you. According to Google, the data collected during remarketing is not merged with personal data that may be stored by Google. Google also pseudonymises this data. Remarketing data based on tags are stored for 30 days. For further information on the terms of use and data protection, please visit http://www.google.com/analytics/terms/de.html and https://www.google.de/intl/de/policies/privacy/. Google Firebase Crashlytics For statistical purposes and for development and testing procedures, we use Google Firebase Crashlytics of Google Inc. 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. ("Google") as a provider of such services. Firebase Crashlytics is used to create and analyse crash reports when the app crashes in order to improve the stability of the app. This involves the processing of usage data and reports. The data is deleted as soon as it is no longer required for our purposes. The cookies have a maximum storage period of 24 months.

Company presences in social networks We maintain online presences within social networks and process user data in this context together with the providers in order to communicate with users active there or to offer information about us. As the jointly responsible party for these pages, we have entered into agreements with the network operators that regulate, among other things, the conditions for the use of pages and similar presences. The following agreements are authoritative in each case: Facebook: https://www.facebook.com/legal/terms/page_controller_addendum Instagram: https://www.facebook.com/legal/terms/page_controller_addendum YouTube: https://business.safety.google/controllerterms/. TikTok: https://ads.tiktok.com/i18n/official/policy/jurisdiction-specific-terms We would like to point out that user data may be processed outside the European Union. This may result in risks for the users because, for example, it may be more difficult to enforce the rights of the users. For a detailed presentation of the respective forms of processing and the options to object (opt-out), we refer to the data protection declarations and information provided by the operators of the respective networks. In the case of requests for information and the assertion of data subject rights, we would also like to point out that these can be asserted most effectively with the providers. Only the providers have access to the users' data and can take appropriate measures and provide information directly. If you still need help, you can contact us. Instagram: Provider: Instagram, Part of Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland Purpose: Our corporate presence in social networks is used for communication and information exchange with (potential) users. In particular, we use the corporate presence for:

· Promote the MyHood platform

· Promote services and products of MyHood cooperation partners

· Publish content related to the MyHood platform

· Conduct raffles Type of content published:

· Information about products

· Information about services

· Advertising Every user is free to publish personal data through activities. The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f DSGVO. The data generated by the company website is not stored in our own systems. You can find more information about the processing of your personal data by Instagram and the corresponding objection options here: Instagram: https://help.instagram.com/519522125107875 Facebook: Provider: Facebook, Part of Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland Purpose: Our corporate presence in social networks is used for communication and information exchange with (potential) users. In particular, we use the corporate presence for:

· Promote the MyHood platform

· Promote services and products of MyHood cooperation partners

· Publish content related to the MyHood platform

· Conduct raffles Type of content published:

· Information about products

· Information about services

· Advertising Every user is free to publish personal data through activities. The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f DSGVO. The data generated by the company website is not stored in our own systems. You can find more information about the processing of your personal data by Instagram and the corresponding objection options here: Facebook: https://www.facebook.com/help/568137493302217 Youtube: Provider: Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland Purpose: Our corporate presence in social networks is used for communication and information exchange with (potential) users. In particular, we use the corporate presence for:

· Promote the MyHood platform

· Promote services and products of MyHood cooperation partners

· Publish content related to the MyHood platform

· Conduct raffles Type of content published:

· Information about products

· Information about services

· Advertising Every user is free to publish personal data through activities. The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f DSGVO. The data generated by the company website is not stored in our own systems. You can find more information about the processing of your personal data by Youtube and the corresponding objection options here: Google: https://policies.google.com/privacy?hl=de Tiktok: On our corporate page, we provide information and offer Facebook users Provider: TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland Purpose: Our corporate presence in social networks is used for communication and information exchange with (potential) users. In particular, we use the corporate presence for:

· Promote the MyHood platform

· Promote services and products of MyHood cooperation partners

· Publish content related to the MyHood platform

· Conduct raffles Type of content published:

· Information about products

· Information about services

· Advertising Every user is free to publish personal data through activities. The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. a DSGVO. The data generated by the company website is not stored in our own systems. You can find more information on the processing of your personal data by Youtube and the corresponding objection options here: Tiktok: https://www.tiktok.com/legal/privacy-policy-eea