The security of your personal and business data confidentially are crucial for Amaranth Group LLC. We use your business data and KPI’s (e.g., sales statistics) exclusively for the operation of Amaranth Group LLC and your data will not be analyzed, assessed, interpreted, or shared with third parties. Without any doubts, to ensure the safety of your business, the secret is our main task.
It is possible to use the internet pages of Amaranth Group LLC without any indication of personal data. Processing of personal data is necessary if a data subject wants to use special company services via our website, and there is no statutory basis for such processing. In the cases above, we usually get consent from the data subject.
The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always comply with the General Data Protection Regulation (GDPR), and Amaranth Group LLC F should be applicable with the country-specific data protection regulations. Our company informs the general public of the nature, scope, and purpose of the personal data we collect, use, and process by means of this data protection declaration. Data subjects are informed about the rights to which they are entitled, also by means of this data protection declaration.
Personal data processed through this website are provided with a variety of technical and organizational measures for complete protection. But as Internet-based data transmissions may have security gaps, absolute protection may not be guaranteed.
The data protection declaration of Amaranth Group LLC is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration is legible and accessible for the general public, our customers, and business partners. To ensure this, first of all, we would like to explain the terminology used.
In this data protection declaration, we use inter alia, the following terms:
-
Personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified by a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. -
Data subject
The data subject is any identified or identifiable natural person, whose personal data is processed by the controller, who is in charge of processing. -
Processing
Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. -
Restriction of processing
Restriction of processing is the marking of stored personal data in order to limit their processing in the future. -
Profiling
Profiling is any form of automated processing of personal data consisting of the use of personal data to assess certain personal aspects relating to a natural person, in particular to dissect or predict aspects concerning that natural person's productivity at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements. -
Pseudonymization
Pseudonymization is a technique after which the personal data can no longer be referred to a specific data subject without the use of additional information, which is kept separately and is subject to technical and organizational measures to reduce the situation that personal data leads to the identification of the natural person. -
Controller or controller responsible for the processing
Controller or controller responsible for the processing is the natural or legal person, public authority, agency or another body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law. -
Processor
The processor is a natural or legal person, public authority, agency or another body which processes personal data on behalf of the controller. -
Recipient
The recipient is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities are not recipients; although they may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law. The processing of those data by those public authorities shall be in compliance with the relevant data protection rules according to the purposes of the processing. -
Third-party
Third-party is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor can process personal data. -
Consent
Consent of the data subject is any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she gives consent to the processing of personal data relating to him or her.
2. Name and Address of the controller
Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in the United States and other provisions related to data protection is:
Anton Kyrza
1910 Thomes Ave
Cheyenne
WY
82001
3. Cookies
The Internet pages of Amaranth Group LLC use cookies. Cookies are text files that are stored in a computer system via an Internet browser.
Many Internet sites and servers use cookies, which contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was saved. This allows visited Internet sites and servers to discern the individual browser of the data subject from other Internet browsers that have other cookies. A specific Internet browser can be recognized and identified using the unique cookie ID.
Providing the users of this website with more user-friendly services by Amaranth Group LLC would not be possible without the cookie setting.
A cookie helps to optimize the information and offers on our website with the user in mind and to recognize our website users. It allows easier for users to utilize our website. The cookie is saved on the user's computer system, and the website user does not have to enter access data each time. A cookie is also a shopping cart in an online shop. It remembers the articles that a customer has placed in the virtual shopping cart via a cookie.
It is possible to deny the setting of cookies through our website at any time and to delete already set cookies via an Internet browser or other software programs. You can do it in all popular Internet browsers. After deactivating the setting of cookies in the Internet browser, not all functions of our website may be entirely usable.
4. Collection of general data and information
The website of Amaranth Group LLC complies main data and information when a data subject or automated system calls up the website. This data and information are saved in the server log files. Collected may be (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrers), (4) the sub-websites, (5) the date and time of access to the Internet site, (6) an Internet protocol address (IP address), (7) the Internet service provider of the accessing system, and (8) any other similar data and information that may be used in the event of attacks on our information technology systems.
Amaranth Group LLC does not make any conclusions about the data subject when using these general data and information. They need this information to (1) deliver the content of our website correctly, (2) optimize the content of our website as well as its advertisement, (3) ensure the long-term viability of our information technology systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. Therefore, Amaranth Group LLC analyzes anonymously collected data and information statistically to increase the data protection and data security of our company, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are saved separately from all personal data provided by a data subject.
5. Registration on our website
The data subject can register on the website of the controller with the indication of personal data. The controller transmits personal data, which is determined by the respective input mask used for the registration. The personal data entered by the data subject are used exclusively for internal use by the controller, and for his own purposes. Transferring to one or more processors (e.g., a parcel service) is also used for an internal purpose which is attributable to the controller.
The IP address—assigned by the Internet service provider (ISP) and used by the data subject—date, and time of the registration is saved when you registrate. The storage of this data takes place against the background that this is the only way to prevent the misuse of our services, and, if necessary, to make it possible to investigate committed offenses. Insofar, the storage of this data is necessary to secure the controller. This data is not passed on to third parties unless there is a statutory obligation to pass on the data, or if the transfer serves the aim of criminal prosecution.
The controller can supply the data subject contents or services that may only be offered to registered users due to the nature of the matter in question using the registration of the data subject, with the voluntary indication of personal data. Registered persons are free to change the personal data specified during the registration at any time, or to have them completely deleted from the data stock of the controller.
The information about the data subject is provided by the data controller. In addition, the data controller can correct or delete personal data at the request or indication of the data subject, as there are no statutory storage obligations. The data subject has access to the entirety of the controller’s employees as contact persons.
6. Subscription to our newsletters
Users have the opportunity to subscribe to our company's newsletter on the website of Amaranth Group LLC. Personal data are determined by the input mask used for this purpose, as well as when the newsletter is ordered from the controller.
A newsletter about the company offers informed to customers and business partners by Amaranth Group LLC. The company's newsletter may only be received by the data subject if (1) the data subject has a valid e-mail address and (2) the data subject registers for the newsletter shipping. A confirmation e-mail is sent to the e-mail address registered by a data subject for the first time for newsletter shipping, for legal reasons, in the double-opt-in procedure. This confirmation e-mail is used to prove whether the owner of the e-mail address as the data subject can to receives the newsletter.
We save the date, time of the registration and the IP address of the computer system while registrating for the newsletter assigned by the Internet service provider (ISP) and used by the data subject at the time of the registration. The collection of this data helps to find out the (possible) misuse of the e-mail address of a data subject at a later date according to the legal protection of the controller.
The personal data, which we get after registration for the newsletter, is only used to send our newsletter. If it is necessary for the operation of the newsletter service or a registration in question, subscribers may be informed to the newsletter using e-mail. It could be the case in the event of modifications to the newsletter offer, or the event of a change in technical circumstances. The newsletter service does not pass personal data to third parties. The subscription to our newsletter may be terminated by the data subject at any time. The data subject can cancel the permission to the storage of personal data for shipping the newsletter at any time. Each newsletter consists of a corresponding link in case cancelation the consent. You can also unsubscribe from the newsletter at any time directly on the website of the controller, or to report this to the controller in another way.
7. Newsletter-Tracking
You can find tracking pixels in the newsletter of Amaranth Group LLC. A tracking pixel means a miniature graphic, which is sent in HTML format to log file recording and analysis embedded in such e-mails. This allows a statistical analysis of the success or failure of online marketing campaigns. Amaranth Group LLC can find information whether an e-mail was opened by a data subject, and which links in the e-mail were called up by data subjects with the help of the embedded tracking pixel.
The controller saves and analyzes such personal data collected in the tracking pixels contained in the newsletters in order to optimize the shipping of the newsletter, as well as to adapt the content of future newsletters even better to the interests of the data subject. These personal data will not be passed on to third parties. The respective declaration of agreement can be canceled by data subjects at any time by means of the double-opt-in procedure. After a cancelation, these personal data will be deleted by the controller. Amaranth Group LLC automatically regards a withdrawal from the receipt of the newsletter as a cancelation.
8. Contact possibility via the website
The website of Amaranth Group LLC contains information that enables quick electronic contact to our company and direct communication with us, which also includes an e-mail address. The personal data transmitted by the data subject are automatically stored when a data subject contacts the controller by e-mail or via a contact form. Such personal data are saved for the purpose of processing or contacting the data subject. This personal data is not passed to third parties.
9. Comments function in the blog on the website
Amaranth Group LLC offers users the possibility to leave different comments on an individual blog, which is on the website. A blog is a web-based, publicly-accessible portal, where bloggers post articles or write down thoughts in so-called blogposts. Blogposts may usually be commented on by third parties.
The comments made by the data subject are also saved and published on this website, as well as information on the date of the commentary and on the user's (pseudonym) chosen by the data subject. In addition, the IP address assigned by the Internet service provider (ISP) to the data subject is also logged. This storage of the IP address is intended for security reasons, and in case the data subject violates the rights of third parties or posts illegal content through a given comment. The data controller can be exculpated in the event of infringement with the help of the storage of these personal data. This collected personal data will not be passed to third parties unless the authorities need this data.
10. Subscription to comments in the blog on the website
Third parties can subscribe to the comments on Amaranth Group LLC. In particular, a commenter can subscribe to the comments following his comments on a particular blog post.
In case a data subject wants to subscribe to the option, the controller sends an automatic confirmation e-mail to check the double opt-in procedure as to whether the owner of the specified e-mail address decided in favor of this option. You can cancel the option to subscribe to comments at any time.
11. Routine erasure and blocking of personal data
The personal data of the data subject are processed and saved by the data controller only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject to.
The personal data are routinely blocked or erased in accordance with legal requirements when a storage period prescribed by the European legislator or another competent legislator expires.
12. Rights of the data subject
- Right of confirmation
Each data subject has the right to obtain from the controller the confirmation as to whether or not personal data concerning him or her are being processed, which is granted by the European legislator. If a data subject wants to avail himself of this right of confirmation, he or she needs to contact any employee of the controller. - Right of access
Each data subject has the right to obtain from the controller free information about his or her personal data saved at any time and a copy of this information, which is granted by the European legislator. Furthermore, the European directives and regulations grant the data subject access to the following information:
• the purposes of the processing;
• the categories of personal data concerned;
• the recipients or categories of recipients to whom the personal data have been or will be detected, in particular recipients in third countries or international organizations;
• where possible, the envisaged period for which the personal data will be saved, or, if not possible, the criteria used to determine that period;
• the existence of the right to request from the controller rectification or erasure of personal data, or restriction of processing of personal data concerning the data subject, or to object to such processing;
• the existence of the right to lodge a complaint with a supervisory authority;
• where the personal data are not collected from the data subject, any available information as to their source;
• the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) of the GDPR and, at least in those cases, significant information about the logic involved, as well as the significance and envisaged consequences of such processing for the data subject.
The data subject also has a right to obtain information as to whether personal data are passed to a third country or to an international organization. In this case, the data subject has the right to get information about the appropriate safeguards relating to the transfer.
A data subject can contact any employee of the controller to avail himself of this right of access at any time. - Right to rectification
Each data subject has the right to get from the controller without undue delay the correction of inaccurate personal data concerning him or her, which is granted by the European legislator. Taking into account the purposes of the processing, the data subject has the right to have partial personal data completed, including by means of providing a supplementary statement.
If a data subject wants to use this right of correction, he or she may, at any time, contact any employee of the controller. - Right to erasure (Right to be forgotten)
Each data subject has the right to get from the controller the erasure of personal data concerning him or her without undue delay, and the controller shall have an obligation to delete personal data without undue delay where one of the following grounds applies, as long as the processing is not necessary:
• The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
• The data subject excludes consent to which the processing is based according to point (a) of Article 6(1) of the GDPR, or point (a) of Article 9(2) of the GDPR, and where there is no other legal ground for the processing.
• The data subject objects to the processing pursuant to Article 21(1) of the GDPR, and there are no main legitimate grounds for the processing or the subject data objects to the processing pursuant to Article 21(2) of the GDPR.
• The personal data have been unlawfully processed.
• The personal data must be delated for according to a legal obligation in Union or Member State law to which the controller is obeyed.
• The personal data have been collected in relation to the offer of information society services referred to in Article 8(1) of the GDPR.
If a data subject wants to request the erasure of personal data stored by Amaranth Group LLC, he or she may, at any time, contact any employee of the controller. We shall secure that the erasure request is complied with immediately.
If a controller has made personal data public and is obliged pursuant to Article 17(1) to delete the personal data, the controller, taking account of available technology and the cost of implementation, shall inform other controllers processing the personal data that the data subject has requested erasure by such controllers of any links to, or copy or replication of, those personal data, as far as processing is not required. An employee of Amaranth Group LLC will arrange the necessary measures in individual cases. - Right of restriction of processing
Each data subject has the right to get from the controller confinement of processing, which is granted by the European legislator, where one of the following applies:
The data subject can contest the accuracy of the personal data for a period enabling the controller to verify the accuracy of the personal data.
The processing is unlawful, and the data subject opposes the erasure of the personal data and requests instead the restriction of their use instead.
The controller does not need the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise, or defense of legal claims.
The data subject has objected to processing pursuant to Article 21(1) of the GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject.
When conditions are met, and a data subject wants to request the restriction of the processing of personal data saved by Amaranth Group LLC, he or she may at any time contact any employee of the controller. Our employee will arrange the restriction of the processing. - Right to data portability
Each data subject has the right to receive the personal data concerning him or her, which was provided to a controller, in a structured, commonly used and machine-readable format, which is granted by the European legislator. He or she has the right to transmit those data to another controller without impediment from the controller to which the personal data have been provided, as long as the processing is based on consent pursuant to point (a) of Article 6(1) of the GDPR or point (a) of Article 9(2) of the GDPR, or on a contract pursuant to point (b) of Article 6(1) of the GDPR, and the processing is carried out by automated means, as long as the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
The data subject has the right to have personal data passed directly from one controller to another, in exercising his or her right to data portability pursuant to Article 20(1) of the GDPR, if it is technically possible and when doing so does not adversely affect the rights and freedoms of others.
The data subject may at any time contact us to assert the right to data portability. - Right to object
Each data subject has the right to object relating to his or her particular situation, at any time, to process a personal data concerning him or her, which is based on point (e) or (f) of Article 6(1) of the GDPR. This also refers to profiling based on these provisions.
Amaranth Group LLC shall no longer process the personal data in case of the objection unless we can demonstrate irresistible legitimate grounds for the processing which reject the interests, rights, and freedoms of the data subject, or for the establishment, exercise or defense of legal claims.
If Amaranth Group LLC processes personal data for direct marketing purposes, the data subject can object at any time to processing of personal data concerning him or her for such marketing. This refers to profiling, such as direct marketing. If the data subject objects to Amaranth Group LLC to the processing for direct marketing purposes, Amaranth Group LLC will not process the personal data for these purposes.
In addition, the data subject has the right to object to processing of personal data concerning him or her by Amaranth Group LLC for scientific or historical research purposes, or for statistical purposes pursuant to Article 89(1) of the GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
The data subject can contact any employee of Amaranth Group LLC exercise the right to object. In addition, the data subject can use information about social services, and notwithstanding Directive 2002/58/EC, and he or she can object by automated means using technical specifications. - Automated individual decision-making, including profiling
Each data subject has the right not to be subject to a decision based exclusively on automated processing, including profiling, which produces legal effects concerning him or her, or similarly significantly affects him or her, as long as the decision (1) is not is necessary for entering into, or the performance of, a contract between the data subject and a data controller, or (2) is not authorized by Union or Member State law to which the controller is subject and which also lays down suitable measures to ensure the data subject's rights and freedoms and legitimate interests, or (3) is not based on the data subject's evident consent.
If the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and a data controller, or (2) it is based on the data subject's obvious consent, Amaranth Group LLC shall execute appropriate measures to ensure the data subject's rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express his or her point of view and contest the decision.
If the data subject wants to exercise the rights concerning automated individual decision-making, he or she can contact any employee of Amaranth Group LLC. - Right to withdraw data protection consent
Each data subject has the right to exclude his or her consent to the processing of his or her personal data at any time, which is granted by the European legislator.
If the data subject wants to exercise the right to withdraw the consent, he or she can contact any employee of Amaranth Group LLC.
13. Data protection provisions about the application and use of Facebook
On this website, the controller has integrated components of the enterprise Facebook. Facebook is a social network.
A social network is an online community, which usually allows users to communicate with each other and interact in a virtual space. A social network is a platform where you can exchange opinions and experiences or provide personal or business-related information. Facebook allows social network users to create private profiles, upload photos, and network through friend requests.
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, United States. If a person does not live in the United States or Canada, the controller is the Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
The controller operates every call-up to one of the individual pages of this Internet website and into which a Facebook component (Facebook plug-ins) was integrated, the web browser on the information technology system of the data subject is automatically prompted to download a display of the corresponding Facebook component from Facebook through the Facebook component. You can find an overview of all the Facebook Plug-ins under https://developers.facebook.com/docs/plugins/. Facebook gets information about what specific sub-site of our website was visited by the data subject during this technical procedure.
If the data subject is logged in at the same time on Facebook, Facebook elicits with every call-up to our website by the data subject—and for the entire duration of their stay on our Internet site—which specific sub-site of our Internet page was visited by the data subject. The Facebook component collects this information and associates with the respective Facebook account of the data subject. If the data subject clicks on one of the Facebook buttons integrated into our website, e.g., the "Like" button, or if the data subject submits a comment, then Facebook matches this information with the personal Facebook user account of the data subject and saves the personal data.
Facebook always gets, through the Facebook component, information about a visit to our website by the data subject, whenever the data subject is logged in at the same time on Facebook during the time of the call-up to our website. This happens regardless of whether the data subject clicks on the Facebook component or not. If such a transmission of information to Facebook is not desirable for the data subject, then he or she may prevent this by logging off from their Facebook account before a call-up to our website is made.
The data protection guideline published by Facebook, which you can find under https://facebook.com/about/privacy/, provides information about the collection, processing, and use of personal data by Facebook. There is information about what setting options Facebook offers to protect the privacy of the data subject. Besides, different configuration options are made available to allow the exclusion of data transmission to Facebook. The data subject can use these applications to eliminate data transmission to Facebook.
14. Data protection provisions about the application and use of Google AdSense
On this website, the controller has integrated Google AdSense. Google AdSense is an online service where advertising on third-party sites is placed. Google AdSense is based on an algorithm that selects advertisements displayed on third-party sites to match with the content of the respective third-party site. Google AdSense allows an interest-based targeting of the Internet user, which is implemented by means of generating individual user profiles.
The operating company of Google's AdSense component is Alphabet Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
The purpose of Google's AdSense component is the integration of advertisements on our website. Google AdSense places a cookie on the information technology system of the data subject. The definition of cookie you can find above. Alphabet Inc. is enabled to analyze the use of our website with the setting of the cookie. The controller operates every call-up to one of the individual pages of this Internet site and into which a Google AdSense component is integrated, the Internet browser on the information technology system of the data subject automatically submits data through the Google AdSense component with the aim of online advertising and the settlement of commissions to Alphabet Inc. The enterprise Alphabet Inc. gains knowledge of personal data, while this technical procedure, such as the IP address of the data subject, which serves Alphabet Inc., inter alia, to understand the origin of visitors and clicks and subsequently create commission settlements.
The data subject may prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus constantly deny the setting of cookies. Such an adjustment to the Internet browser used would also prevent Alphabet Inc. from setting a cookie on the information technology system of the data subject. Furthermore, cookies already used by Alphabet Inc. may be deleted at any time via a web browser or other software programs.
Google AdSense also uses so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in web pages to enable a log file recording and a log file analysis through which a statistical analysis may be performed, Alphabet Inc. is able to determine if and when a website was opened by a data subject, and which links were clicked on by the data subject, based on the embedded tracking pixels. Tracking pixels serve, inter alia, to analyze the flow of visitors on a website.
Personal data and information—which also includes the IP address, and is necessary for the collection and accounting of the displayed advertisements—is passed to Alphabet Inc. in the United States of America through Google AdSense.These personal data will be saved and processed in the United States of America. Alphabet Inc. may reveal the collected personal data through this technical procedure to third parties.
Google AdSense is further explained under the following link https://www.google.com/intl/en/adsense/start/.
15. Data protection provisions about the application and use of Google Analytics (with anonymization function)
The controller has integrated the component of Google Analytics (with the anonymizer function) on this website. Google Analytics is a web analytics service. Web analytics is the collection, gathering, and analysis of data about the behavior of visitors to websites. A web analysis service collects inter alia, data about the website from which a person has come (the so-called referrer), which sub-pages were visited, or how often and for what duration a sub-page was viewed. Web analytics are mainly used for the optimization of a website and in to carry out a cost-benefit analysis of Internet advertising.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
The controller uses the application "_gat. _anonymizeIp" For the web analytics through Google Analytics. The data subject is confined by Google by means of this application and anonymized when accessing our websites from a Member State of the European Union or another Contracting State to the Agreement on the European Economic Area.
The aim of the Google Analytics component is to analyze the traffic on our website. Google uses the collected data and information, inter alia, to assess the use of our website and to provide online reports, which show the activities on our websites, and to provide other services concerning the use of our Internet site for us.
A cookie is placed on Google Analytics on the information technology system of the data subject. You can find the definition of cookies above. Google can analyze the use of our website with the setting of the cookie. The controller operates every call-up to one of the individual pages of this Internet site and into which a Google Analytics component was integrated, the Internet browser on the information technology system of the data subject automatically submits data through the Google Analytics component with the aim of online advertising and the settlement of commissions to Google. The enterprise Google gains knowledge of personal information, such as the IP address of the data subject, which serves Google, inter alia, to understand the origin of visitors and clicks, and subsequently create commission settlements during this technical procedure.
You can save personal information with the help of the cookie, such as the access time, the location from which the access was made, and the frequency of visits of our website by the data subject. Personal data, including the IP address of the Internet access used by the data subject, will be passed to Google in the United States of America with every visiting our web site. Google in the United States of America saves these personal data. These personal data may be passed to third parties by Google.
A corresponding adjustment of the web browser helps to prevent the setting of cookies through our website at any time and thus constantly negate the setting of cookies. Such a regulation to the Internet browser also prevents Google Analytics from setting a cookie on the information technology system of the data subject. Furthermore, Google Analytics can delete cookies at any time via a web browser or other software programs.
In addition, the data can object a collection of data that are generated by Google Analytics, which is related to the use of this website, as well as the processing of this data by Google and the chance to avert any such. For this purpose, the data subject must download a browser add-on under the link https://tools.google.com/dlpage/gaoptout and install it. This browser add-on tells Google Analytics through a JavaScript that any data and information about the visits of Internet pages may not be passed to Google Analytics. The installation of the browser add-ons is considered an objection by Google. If the information technology system of the data subject is later deleted, formatted, or newly installed, then the data subject must reinstall the browser add-ons to disable Google Analytics. If the browser add-on was uninstalled by the data subject or any other person who is preferable to their sphere of competence or is disabled, it is possible to execute the reinstallation or reactivation of the browser add-ons.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/ and under http://www.google.com/analytics/terms/us.html. Google Analytics is further explained under the following Link https://www.google.com/analytics/.
16. Data protection provisions about the application and use of Google Remarketing
On this website, the controller has integrated Google Remarketing services. Google Remarketing is a feature of Google AdWords, which allows a company to display advertising to Internet users who have previously resided on the enterprise's Internet site. The integration of Google Remarketing allows a company to make user-based advertising and thus shows pertinent advertisements to interested Internet users.
The operating company of the Google Remarketing services is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
The purpose of Google Remarketing is the insertion of interest-relevant advertising. We can display ads on the Google network or on other websites, which are based on individual needs and matched to the interests of Internet users with the help of Google Remarketing.
Google Remarketing installs a cookie on the information technology system of the data subject. You can find the definition of cookies above. Google can recognize the visitor of our website if he calls up consecutive web pages with the setting of the cookie, which is also a member of the Google advertising network. The web browser of the data subject identifies automatically with Google with each call-up to the Internet site on which the service has been integrated by Google Remarketing. Google receives personal information, such as the IP address or the surfing behavior of the user, which Google uses, inter alia, for the insertion of interest-relevant advertising during this technical procedure.
The cookie saves personal information, e.g., the Internet pages visited by the data subject. When the data subject visits our Internet pages, personal data, including the IP address of Internet access, are passed to Google in the United States of America. These personal data are saved by Google in the United States of America. Google may pass these personal data collected through the technical procedure to third parties.
The data subject may prevent the setting of cookies through our website at any time by means of a corresponding adjustment of the web browser used and thus constantly negate the setting of cookies. Such an adjustment to the Internet browser also prevents Google from setting a cookie on the information technology system of the data subject. In addition, cookies already in use by Google may be deleted at any time via a web browser or other software programs.
In addition, the data subject can object the interest-based advertising by Google. For this purpose, the data subject must call up the link to www.google.de/settings/ads and make the desired settings on each Internet browser used by the data subject.
Further information and the actual data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/.
17. Data protection provisions about the application and use of Google+
The controller has integrated the Google+ button as a component on this website. Google+ is a so-called social network. A social network is an online community, where users can communicate with each other and interact in a virtual space. A social network may serve as a platform for exchanging of opinions and experiences, or enable the Internet community to provide personal or business-related information. Users can include the creation of private profiles, upload photos, and network through friend requests using Google+.
The operating company of Google+ is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, UNITED STATES.
The controller operates every call-up to one of the individual pages of this website and on which a Google+ button has been integrated, the Internet browser on the information technology system of the data subject automatically downloads a display of the corresponding Google+ button of Google through the respective Google+ button component. Google has access to information about what specific sub-page of our website was visited by the data subject during this technical procedure. More detailed information about Google+ is available under https://developers.google.com/+/.
If the data subject is logged in at the same time to Google+, Google recognizes with each call-up to our website by the data subject and for the entire duration of his or her stay on our Internet site, which specific sub-pages of our Internet page were visited by the data subject. This information is collected through the Google+ button, and Google matches this with the respective Google+ account associated with the data subject.
If the data subject clicks on the Google+ button integrated on our website and thus gives a Google+ 1 recommendation, then Google assigns this information to the personal Google+ user account of the data subject and stores the personal data. Google saves the Google+ 1 recommendation of the data subject and makes it publicly available in accordance with the terms and conditions accepted by the data subject in this regard. Afterwards, a Google+ 1 recommendation given by the data subject on this website together with other personal data, such as the Google+ account name used by the data subject and the stored photo, is saved and processed on other Google services, such as search engine results of the Google search engine, the Google account of the data subject or in other places, e.g. on Internet pages, or in relation to advertisements. Google can also link the visit to this website with other personal data saved on Google. Google further records this personal information with the purpose of improving or optimizing the various Google services.
Google receives information that the data subject visited our website through the Google+ button if the data subject at the time of the call-up to our website is logged in to Google+. This happens regardless of whether the data subject clicks or doesn’t click on the Google+ button.
If the data subject does not want to pass personal data to Google, he or she may prevent such transmission by logging out of his Google+ account before calling up our website.
Further information and the data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/. More references from Google about the Google+ 1 button may be obtained under https://developers.google.com/+/web/buttons-policy.
18. Data protection provisions about the application and use of Google-AdWords
The controller has integrated Google AdWords on this website. Google AdWords is a service for Internet advertising where the advertiser places ads in Google search engine results and the Google advertising network. An advertiser can pre-define specific keywords with the help of which an ad on Google's search results only then displayed when the user uses the search engine to retrieve a keyword-relevant search result. In the Google Advertising Network, the ads are distributed on relevant web pages using an automatic algorithm using the previously defined keywords.
The operating company of Google AdWords is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, UNITED STATES.
The aim of Google AdWords is the promotion of our website by the inclusion of relevant advertising on the websites of third parties and in the search engine results of the search engine Google and an insertion of third-party advertising on our website.
If a data subject reaches our website via a Google ad, a conversion cookie is filed on the information technology system of the data subject through Google. A conversion cookie loses its validity after 30 days and is not used to identify the data subject. If the cookie has not expired, the conversion cookie is used to check whether certain sub-pages, e.g., the shopping cart from an online shop system, were called up on our website. Google and the controller can find out whether a person, who reached an AdWords ad on our website generated sales, executed or canceled a sale of goods with the help of the conversion cookie.
Google uses the conversion cookie to create visit statistics for our website. These visit statistics are used in order to define the total number of users who have been served through AdWords ads to ascertain the success or failure of each AdWords ad and to optimize our AdWords ads in the future. Neither our company nor other Google AdWords advertisers receive information from Google that could identify the data subject.
The conversion cookie saves personal information, e.g., the Internet pages visited by the data subject. When we visit our Internet pages, personal data, including the IP address of the Internet, access is passed to Google in the United States of America used by the data subject. These personal data are stored by Google in the United States of America. These personal data collected through the technical procedure may be passed to third parties.
The data subject may prevent the setting of cookies by our website, with the help of a corresponding setting of the Internet browser used and thus constantly negate the setting of cookies. Google uses such a setting of the Internet browser to prevent from placing a conversion cookie on the information technology system of the data subject. In addition, a cookie set by Google AdWords may be deleted at any time via the Internet browser or other software programs.
The data subject can object to the interest-based advertisement of Google. Therefore, the data subject must access from each of the browsers in use the link www.google.de/settings/ads and set the desired settings.
Further information and the applicable data protection provisions of Google may be retrieved under https://www.google.com/intl/en/policies/privacy/.
19. Data protection provisions about the application and use of Instagram
The controller has integrated components of the service Instagram on this website. Instagram is an audiovisual platform, where users share photos and videos, as well as spread such data in other social networks.
The operating company of the services offered by Instagram is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, UNITED STATES.
The controller operates each call-up to one of the individual pages of this Internet site and on which an Instagram component (Insta button) was integrated, the Internet browser on the information technology system of the data subject is automatically prompted to the download of a display of the corresponding Instagram component of Instagram. Instagram becomes aware of what specific sub-page of our website was visited by the data subject during the course of this technical procedure.
If the data subject is logged in at the same time on Instagram, Instagram detects with every call-up to our website by the data subject—and for the entire duration of their stay on our Internet site—which specific sub-page of our Internet page was visited by the data subject. This information is collected and is associated with the respective Instagram account of the data subject with the help of Instagram component. If the data subject clicks on one of the Instagram buttons integrated on our website, then Instagram matches this information with the personal Instagram user account of the data subject and saves the personal data.
Instagram gets information via the Instagram component that the data subject has visited our website provided that the data subject is logged in at Instagram at the time of the call to our website. This happens regardless of whether the person clicks on the Instagram button or not. If such a transmission of information to Instagram is not desirable for the data subject, then he or she can prevent this by logging off from their Instagram account before a call-up to our website is made. Further information and the applicable data protection provisions of Instagram may be retrieved under https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.
20. Data protection provisions about the application and use of Twitter
The controller has integrated components of Twitter on this website. Twitter is a multilingual, publicly-accessible microblogging service where users publish and spread so-called ‘tweets,’ e.g., short messages, which are limited to 280 characters. These short messages can see everyone, including those who are not logged on to Twitter. The tweets are also displayed to so-called followers of the respective user. Followers are other Twitter users who follow a user's tweets. Furthermore, you can address to a wide audience via hashtags, links, or retweets.
The operating company of Twitter is Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, UNITED STATES.
The controller operates each call-up to one of the individual pages of this Internet site and on which a Twitter component (Twitter button) was integrated, the Internet browser on the information technology system of the data subject is automatically prompted to download a display of the corresponding Twitter component of Twitter. Further information about the Twitter buttons is available under https://about.twitter.com/de/resources/buttons.Twitter has information about what specific sub-page of our website was visited by the data subject while this technical procedure, The purpose of the integration of the Twitter component is a retransmission of the contents of this website to allow our users to introduce this web page to the digital world and increase our visitor numbers.
If the data subject is logged in at the same time on Twitter, Twitter detects with every call-up to our website by the data subject and for the entire duration of their stay on our Internet site which specific sub-page of our Internet page was visited by the data subject. The Twitter component collects this information and associates with the respective Twitter account of the data subject. If the data subject clicks on one of the Twitter buttons integrated on our website, then Twitter assigns this information to the personal Twitter user account of the data subject and stores the personal data.
Twitter gets information via the Twitter component that the data subject has visited our website, provided that the data subject is logged in on Twitter at the time of the call-up to our website. This happens regardless of whether the person clicks on the Twitter component or not. If such a transmission of information to Twitter is not desirable for the data subject, then he or she may avert this by logging off from their Twitter account before a call-up to our website is made.
The applicable data protection provisions of Twitter may be accessed under https://twitter.com/privacy?lang=en.
21. Data protection provisions about the application and use of the live chatbox
The controller has integrated a chat box to ensure customer service and answer questions about the product. The live chat and email messenger system are provided by intercom.io. Intercom improves our customer experience through a quick service. During the operation of the website, intercom consists of your personal data (email address and your name) if you provide these in the chatbox or in your Amaranth Group LLC account.
The operating company of intercom.io is: INTERCOM, INC., 55 2nd St, 4th Fl., San Francisco, CA 94105 USA
A customer service provider Meta-Sistem (Meta-Sistem S.R.L., str. Cuza Voda 44, MD-2060 Chisinau, Moldova) can answer main questions about the web site and the service functionality. If you enter your email address and/or your personal data, these might be passed to Meta-Sistem through the chatbox.
22. Data protection provisions about the application and use of YouTube
The controller has integrated components of YouTube on this website. YouTube is an Internet video portal that enables video publishers to set video clips and other users free of charge, which also provides free viewing, review, and commenting on them. YouTube allows you to publish all kinds of videos, so you can watch full movies and TV broadcasts, as well as music videos, trailers, and videos made by users via the Internet portal.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, UNITED STATES. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, UNITED STATES.
The controller operates each call-up to one of the individual pages of this Internet site and on which a YouTube component (YouTube video) was integrated, the Internet browser on the information technology system of the data subject is automatically prompted to download a display of the corresponding YouTube component. Further information about YouTube may be obtained under https://www.youtube.com/yt/about/en/. During the course of this technical procedure, YouTube and Google gain knowledge of what specific sub-page of our website was visited by the data subject.
If the data subject is logged in on YouTube, YouTube recognizes with each call-up to a sub-page that contains a YouTube video, which specific sub-page of our Internet site was visited by the data subject. This information is collected by YouTube and Google and assigned to the respective YouTube account of the data subject.
YouTube and Google receive information through the YouTube component that the data subject has visited our website if the data subject at the time of the call to our website is logged in on YouTube. This happens regardless of whether the person clicks on a YouTube video or not. If such a transmission of this information to YouTube and Google is not desirable for the data subject, the delivery may be averted if the data subject logs off from their own YouTube account before a call-up to our website is made.
YouTube's data protection provisions, available at https://www.google.com/intl/en/policies/privacy/, provide information about the collection, processing, and use of personal data by YouTube and Google.
23. Database encrypted.
There are authentication any users and other logs where we can check access for all users our data.
- Data Retention and Recovery. We will retain PII ONLY for the purpose of, and as long as is necessary to fulfill orders (no longer than 30 days after order shipment), or to calculate/remit taxes. In the event that PII is lost, you must be able to recover all PII lost (i.e., the data is erased or unavailable for processing due to system crash or ransomware).
- Data Governance. We'll create an algorithm for creation, document, and abide by privacy and data handling policy for our software which governs the appropriate conduct and technical controls to be applied in managing and protecting information assets. We keep an inventory of software and physical assets (e.g. computers, mobile devices) with access to PII, and update regularly. A record of data processing activities such as specific data fields and how they are collected, processed, stored, used, shared, and disposed of for all PII Information should be maintained to establish accountability and compliance with regulations. We have established and abide by privacy policy for customer consent and data rights to access, rectify, erase, or stop sharing/processing their information where applicable or required by data privacy regulation.
- Encryption and Storage. We have encrypted all PII at rest (e.g., when the data is persisted) using industry best practice standards (e.g. using either AES-256 or RSA with 2048-bit key size (or higher). The cryptographic materials (e.g., encryption/decryption keys) and cryptographic capabilities (e.g., daemons implementing virtual Trusted Platform Modules and providing encryption/decryption APIs) used for encryption of PII at rest must be only accessible to the Developer's processes and services. we don't store PII in removable media (e.g., USB) or unsecured public cloud applications (e.g., public links made available through Google Drive).
Least Privilege Principle. Access to the data in our software database is divided by responsibility roles is provided only for those users who are related to the processing and shipment of the order. Application sections or features that vend PII protected under a unique access role and access be granted on a "need-to-know" basis.
Logging and Monitoring. We have logs to detect security-related events (e.g., access and authorization, intrusion attempts, configuration changes) to their applications and systems. We hed implement this logging mechanism on all channels (e.g., service APIs, storage-layer APIs, administrative dashboards) providing access to Amazon Information. All logs have access controls to prevent any unauthorized access and tampering throughout their lifecycle. Logs themselves not contain PII and will be retained for at least 90 days for reference in the case of a Security Incident. Also, our team builds mechanisms to monitor the logs and all system activities to trigger investigative alarms on suspicious actions (e.g., multiple unauthorized calls, unexpected request rate, and data retrieval volume, and access to canary data records). We have check-list for performing investigation when monitoring alarms are triggered, and this document in the Developer's Incident Response Plan.
24. Payment Method: Data protection provisions about the use of stripe as a payment processor
The controller has integrated components of the stripe. Stripe is an online payment service provider on
Amaranth Group LLC:
1910 Thomes Ave
Cheyenne
WY
82001
The processing of the purchase contract also requires such personal data, which are in connection with the respective order. In particular, the exchange of payment information such as bank details, card number, date of validity and CVC code, cumulative number, item number, data on goods and services, prices and taxes, information on the previous purchase behavior or other details of the financial situation of the data subject.
The data subject can cancel the consent to the handling of personal data at any time from the stripe. A revocation doesn’t affect personal data which must be processed, used, or passed in accordance with (contractual) payment processing.
The applicable data protection provisions of a stripe may be retrieved under
https://stripe.com/ch/privacy#pagmt
24. Legal basis for the processing
Art. 6(1) lit. a GDPR is a legal basis for processing operations for which we get consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, as is the case, for example, when processing operations are needed to supply goods or to provide any other service, the processing is based on Article 6(1) lit. b GDPR. The same refers to such processing operations which are necessary for carrying out pre-contractual measures, for example, in the case of inquiries concerning our products or services. Our company is subject to a legal obligation by which processing of personal data is required, such as for the fulfillment of tax obligations, the processing is based on Art. 6(1) lit. c GDPR. In rare cases, the processing of personal data protects the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third parties. Then the processing would be based on Art. 6(1) lit. d GDPR. Finally, processing operations could be based on Article 6(1) lit. f GDPR. This legal basis is used for processing operations which are not covered by any of the abovementioned legal grounds, if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. Such processing operations are particularly acceptable because they have been specifically mentioned by the European legislator. He considered that a legitimate interest could be assumed if the data subject is a client of the controller (Recital 47 Sentence 2 GDPR).
25. The legitimate interests pursued by the controller or by a third party
When the processing of personal data is based on Article 6(1) lit. f GDPR our legitimate aim is to carry out our business in favor of the well-being of all our employees and the shareholders.
26. Period for which the personal data will be stored
The criteria used to define the period of storage of personal data is the respective established retention period. After the end of that period, the corresponding data is routinely deleted, as long as it is no longer necessary for the fulfillment of the contract or the initiation of a contract.
27. Provision of personal data as a statutory or contractual requirement; Requirement necessary to enter into a contract; We clarify that the provision of personal data may be required by law or as part of a contractual obligation. In some cases, it may be necessary to provide personal data in order to enter into a contract with us or to fulfill contractual obligations. The obligation of the data subject to provide personal data will depend on the specific circumstances and the nature of the relationship between the data subject and our organization.
Failure to provide the required personal data may result in the inability to enter into a contract or fulfill contractual obligations. This could include, but is not limited to, the inability to process orders, provide services, or fulfill other requests made by the data subject. It is important for data subjects to understand the potential consequences of failing to provide the requested personal data and to ensure that they provide accurate and complete information when required.