Privacy Policy

Roccat GmbH Privacy Policy

This is the privacy policy of Roccat GmbH (hereinafter referred to as "Roccat", or "we"). We offer goods and services on our website ("website") and via mobile applications ("mobile apps" or "apps") (together, "services"). In this data protection declaration we inform you about what personal data we collect and process. We will also inform you of your rights. The responsibility for the protection and processing of personal data is important to us. Your data is protected against unauthorised access and loss with the help of various technical and contractual measures. We have taken the necessary technical and organisational measures to achieve this. If links lead to third party websites, please note that these companies provide their own data protection declarations, which then apply in this respect. We only offer our services to persons who are at least 16 years of age. We therefore do not knowingly collect and process data from persons under 16 years of age.

I. Name and address of the data controller

The data controller within the meaning of the German Basic Data Protection Ordinance and other national data protection laws of the Member States as well as other data protection laws is:

ROCCAT GmbH
Otto von Bahrenpark
Gasstrasse 4
22761 Hamburg, Germany
Germany
Fax: +49 (0)40 30 99 495 123
info@roccat.org

Managing Director: René Korte
Commercial Register: Hamburg Local Court
HRB: 102127
VATID No.: DE253775299

II. Name and address of the Data Protection Officer

The Data Protection Officer for the data controller is:

Attorney at law and specialist attorney for information technology law
Dr. Christian Rauda
GRAEF Rechtsanwälte Digital PartG mbB
Jungfrauenthal 8
E-Mail: datenschutzbeauftragter@roccat.org
Website: www.graef.eu

III. General information on data processing

1. The scope of processing personal data

In principle, we only collect the personal data that you provide when using services within the scope of your registration and, if necessary, when purchasing goods or using chargeable services. Personal data are data that contain information about personal or factual circumstances.

You can create an account with your email address and password. When registering for ROCCAT WORLD, the following information is required: country, nickname, email address and password. Passwords are stored in encrypted form, which at no time allows any conclusion to be drawn about the actual password. Within the scope of a purchase of goods or the paid services you have chosen, it may be necessary to provide additional data, such as your full name, address, bank account details, credit card numbers, etc. The data will not be passed on to third parties. Sometimes it is also necessary to ask you for personal data such as name, address, email address and telephone number in order to process your enquiries or for your support.

We also collect data in the course of voluntary participation in inquiries and surveys. We only disclose personal data to cooperating companies or external service providers, as far as this is legally prescribed or legally permissible, in particular for the performance of the contract, for payment processing and for the protection of other users or to avert dangers for state or public security or for prosecution of criminal offences.

Your concerns worthy of protection are considered in accordance with the legal data protection regulations. In the event of a delay in payment, we reserve the right, if necessary, to hire a collection agency or a lawyer for the collection of the due claim and to pass on the necessary data within this framework.

We treat all this data confidentially and in compliance with the legal data protection requirements. As a matter of principle, we fundamentally do not provide such information to third parties without your permission, unless this is necessary for the execution and processing of the contract, for processing of your inquiry or if it is necessary for your support or is permissible according to the legal data protection regulations.

2. Legal basis for processing personal data

Insofar as we obtain the consent of the data subject for processing personal data, Art.
6 para. 1 (a) EU General Data Protection Regulation (GDPR) as the legal basis for the processing of personal data.

In the processing of personal data necessary for the fulfilment of a contract to which the data subject is a party, Art. 6 para. 6(1)(b) GDPR serves as a legal basis. This also applies to processing operations that are necessary for pre-contractual measures.

As far as the processing of personal data for the fulfilment of a legal obligation is required to which our company is subject, Art. 6 para. 1 (c) GDPR serves as a legal basis.

In the event that the vital interests of the data subject or any other natural person requires processing of personal data, Art. 6 para. 1 d) GDPR applies as the legal basis.

If the processing is necessary for the protection of a legitimate interest of our company or of a third party and the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 (f) GDPR applies as the legal basis for processing.

3. Purpose of Personal Data processing

We collect and process data to enable you to use the services. This also includes processing for the purpose of data security and stability and operational reliability of our system and for billing purposes. We process your information to support you with support requests. Data shall also be processed in order to detect misuse of multiple accounts, e.g. for fraudulent purposes, and to prevent it. Data processing takes place in order to win new customers and to present advertising that we believe suits your interests.

4. Data deletion and storage duration

The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage ceases to apply. In addition, storage can occur then if this is required by European or national lawmakers in EU regulations, laws or other regulations under EU law to which the data controller is subject to. Blocking or deleting data also takes place if a storage period prescribed by the aforementioned standards passes, unless a requirement for further storage of the data for a conclusion of the contract or performance of the contract exists.

5. Data Security

We take reasonable precautions to prevent unauthorised access to your personal data as well as the unauthorised use or falsification of this data and to minimise the corresponding risks. Nevertheless, the provision of personal data, whether in person, by telephone or via the Internet, is always associated with risks and no technological system is completely free of the possibility of manipulation or sabotage.

The data collected from you is processed according to German and European data protection laws. All employees are aware of the data secrecy and the data protection regulations and instructed in this regard. For payment transactions, your information is transferred encrypted using the SSL process

IV. Provision of services and creation of log files

1. Description and scope of data processing

Every time our services are called up, our system automatically collects data and information from the computer system of the calling computer.

In doing so, the following data is collected:

  • IP address
  • URL of the referring Web site from which the file was requested.
  • Date and time of access
  • Browser type and operating system as well as hardware information
  • The page you have visited
  • Amount of data transferred;
  • Access status (file transferred, file not found, etc.)
  • Duration and frequency of use
  • Available IDs of third parties (e.g. Google Play ID, Facebook ID, etc.) to enable cross-device use

The data is also stored in the log files of our system.

2. The Legal Basis for Data Processing

The legal basis for temporary storage of data and log files is Art. 6 para. 1 (f) GDPR.

3. The Purpose of Data Processing

Temporary storage of the IP address by the system is necessary for delivery of the services to the user's computer. For this purpose, the IP address of the user must be stored for the duration of the session.

The data are stored in log files to ensure the website's functionality. The data is also used to optimise the website and to ensure the security of our information technology systems. Data is stored beyond the duration of the session for the purpose of combating fraud (e.g. payment fraud, violation of the game rules by the same person using several accounts) and for the purpose of IT security (e.g. protection against DDoS attacks). Only one statistical evaluation of the data records is conducted.

We reserve the right to store IP addresses and log files for a certain period of time even after using the Services to monitor compliance with the Terms of Use. In particular, this procedure serves to prevent possible cases of abuse or to clarify them and to be able to pass on the data to investigative authorities for this purpose in individual cases or to be able to correct bugs.

Additionally, any other evaluation of data is carried out as far as possible in anonymous form. After the end of this period, the IP address and log files will be completely deleted, unless there are mandatory legal storage obligations or specific criminal prosecution and abuse investigation proceedings pending. These purposes also encompass our legitimate interest in data processing in accordance with Art. 6 para. 1 (f), GDPR.

4. Duration of Storage

The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected.

5. Objection and removal option

The collection of data for the provision of services and the storage of data in log files is absolutely necessary to ensure the uninterrupted operation of the services. Consequently, there is no option to object on the part of the user.

V. Push Notifications

1. Description and scope of data processing

We can send push notifications to your device to notify you of updates for services, news and other relevant messages.

2. The Legal Basis for Data Processing

The legal basis for the processing of the data in the case of a contract in accordance with Art. 6 is para. 1 b GDPR.

3. Objection and cancellation options

You can prevent this from happening by making the appropriate settings in your system. Please refer to the documentation of the system you are using.

VI. Contact form and email contact, support form

1. Description and scope of data processing

On our website there is a contact form, which can be used for making electronic contact. If a user accepts this option, the data entered in the input screen will be transmitted to us and stored. This data includes:

Email
Type of enquiry
Name
Country
Question/problem setting
Browser, hardware and operating system data

Alternatively, you can contact us via the provided email address. In this case, the user's personal data that is transmitted along with the email will be stored.

Alternatively, you can also contact us as part of our game.

This data shall not be disclosed to third parties in this context. The data are used exclusively for processing the request.

2. The Legal Basis for Data Processing

The legal basis for processing the data if the user's consent has been obtained is Art. 6 para. 1 a GDPR.

Legal basis for the processing of data which is collected in the course of the transmission of an email is Art. 6 para. 1 (f), GDPR. If the email contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 b GDPR.

3. The Purpose of Data Processing

We only use personal data provided on contact forms for processing of contact. If you contact us by email, processing also occurs in the necessary legitimate interest in the processing of the data.

Other personal data processed during the sending process are used to prevent misuse of the contact form and to ensure security of our information technology systems.

Other personal data processed during the sending process are used to prevent misuse of the contact form and to ensure security of our information technology systems.

The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. For the purpose of fighting fraud and improving support, the data is stored for six months.

5. Objection and removal option

The user has the possibility at any time to withdraw his consent to the processing of personal data. If the user contacts us, he can revoke consent to the storage of his personal data at any time. In such a case, It will not be possible to continue saving data. In this case, all personal data stored when establishing contact with us shall be deleted.

VII. Cookies, web beacons, etc.

1. Description and scope of data processing

Cookies

We use "cookies", i.e. text files or pixels, which are stored on the user's display device. These are technologies with whose help includes certain user-specific settings and technical information, with which the user can be identified, can be collected. We use cookies to make our services more user-friendly. Some elements of our services require that the user can be identified. We also use cookies, which enable an analysis of the user's behaviour.

There are permanent cookies that are stored on your display device for a longer period of time, and session cookies that are temporarily stored on your display device and that are deleted after the services are closed.

We use necessary cookies, function cookies, performance cookies, targeting and advertising cookies, conversion tracking cookies.

Necessary cookies

These cookies are necessary for the use of the services. Without these necessary cookies, it is possible that we may not be able to provide you with certain services or features or that the presentation of the services is not error-free.

Function cookies

Function cookies allow us to recognise your preferences and provide you with advanced and more customised features e.g. personal adaptation of the services, recognition, or whether or not we have asked you certain things or you have requested other services. All these features help us to improve our services for you.

Performance cookies

Performance cookies are sometimes also referred to as analytics cookies and collect information about your use of the services and enable us to improve the functioning of the services. For example, performance cookies show us which pages are most frequently used, what the entire usage pattern for the services are and help us to identify problems with the use of the services.

Targeting and advertising cookies

We and our service providers can use targeting or advertising cookies to show you advertising that is better suited to your interests and preferences. We may use targeting or advertising cookies to limit the number of identical ads you see in the services or to determine the effectiveness of our marketing campaigns. These cookies record, for example, what you have viewed within the scope of the services and we share this information with other organisations. The display of advertising supports the operation and further development of the services.

Conversion tracking cookies

In order to provide our users with the best possible experience, we constantly try to add new users to the community. We use conversion tracking in the process of billing and outsourcing of marketing measures. With our help, a marketing partner records when a user has completed a registration or a predefined action. On the web, this is done by automatically contacting the marketing partner's server. The data transmitted by us is limited to the most necessary.

The following data will be transmitted to us:

  • isLoggedIn - User status: Not logged in
  • uiCountry - Country of the user
  • uiLanguage - language of the user
  • uiNewsletterSubscriber - Whether the optional newsletter is desired
  • uiProdAuthentication - This is a user
  • uiUser - MD5 hash of user ID

At the beginning of the use of the services, users are informed about the use of cookies. If the user does not desire the storage of cookies on his display device, or wishes to delete a stored cookie or to be notified about its storage, he can adjust his browser or his mobile device accordingly. How this is to be done in detail can be seen from the help-information from the browser. We expressly point out that in this case, not all functions of the services may be fully functional for the user.
If you access our services via third parties, it is possible that these third parties may use cookies. We have no influence over this. Please observe the data protection regulations of the third parties.

2. The Legal Basis for Data Processing

The legal basis for the processing of personal data using cookies is Art. 6 par. 1 (f) GDPR.

3. The purpose of data processing

The purpose of the use of technically necessary cookies is to simplify use. Some functions of our software cannot be offered without the use of cookies. The user data collected by technically necessary cookies are not used to create user profiles. Analysis cookies are used to improve the quality of our services and their content.

By using analysis cookies, we learn more about how the services are used and can thus constantly optimise our offer. Our legitimate interest in data processing is also based in the processing of personal data pursuant to Art. 6 para. 1 (f), GDPR. Furthermore, we have a legitimate interest in playing off advertising in our services. We have an interest in finding new customers. To make this possible, our advertising partners must use cookies.

4. Duration of storage, objection and removal option

Cookies are stored on the user's device and transmitted to us by the user. Therefore, as a user you have full control of the use of cookies. By changing the settings in your internet browser or mobile device, you can disable or restrict the transmission of cookies. Cookies that are already saved can be deleted at any time. This can also be done automatically. If cookies are deactivated, it is possible that not all functions of the services can be used to their full extent.

VIII. Forum

On our website, you have the possibility to post articles in a forum. Here, too, registration with a user name and your e-mail address, entering a password, is required. The registration can be done under a pseudonym. These data are stored on our part only for the purpose of the log-in possibility. The forum is operated by phpBB Deutschland e. V., Sandweg 17, 70771 Leinfelden-Echterdingen. Further information about the use of your data by the operator can be found under the following link: https://www.phpbb.com/community/ucp.php?mode=privacy.

IX. Facebook Connect

We offer you the opportunity to sign up for our services with Facebook Connect. This is a service provided by Facebook Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). An additional registration is therefore not necessary. You will be redirected to the Facebook page where you can log in with your user data. This will link your Facebook profile and our service. Through the link we automatically receive from Facebook Inc. The following information will be sent to us: Email address, first name, last name.

This information is mandatory for the conclusion of the contract in order to be able to identify you. For more information about Facebook Connect and the privacy settings, please see the privacy notices on https://de-de.facebook.com/about/privacy/update and https://www.facebook.com/legal/terms of Facebook.

X. Facebook Pixel

Based on our rightful interest in the analysis, optimisation and efficient operation of our online offer, we have decided to use the “Facebook pixel”, for our online offerings, provided by the social network, Facebook, which is operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or, in case you are based in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand canal Harbour, Dublin 2, Ireland (“Facebook”).

The Facebook pixel is a code snippet that is placed on our website.

With the help of Facebook pixels, Facebook is able to determine the visitors of our online offer as a target group for the presentation of advertisements ("Facebook ads"). Accordingly, we use the Facebook pixel to display our Facebook ads only to Facebook users who have shown an interest in our website or who have certain traits (e.g. interests in certain topics or products that are determined by the websites visited) that we transmit to Facebook ("custom audiences"). The Facebook pixel also allows us to track the effectiveness of Facebook ads for statistical and market research purposes by showing whether users have been redirected to our services after clicking on a Facebook ad ("conversion"), (i.e. to determine which devices a user uses when performing an action), to create lookalike audiences/statistical twins (i.e. to broadcast advertising to target groups that are similar to existing customers) and to obtain comprehensive statistics on the use of the website. The Facebook pixel establishes a direct connection to the Facebook servers when you visit our website. A message is sent to the Facebook server indicating that you have visited this website and Facebook assigns this information to your personal Facebook user account.

Facebook is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European data protection law(https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

To find more information on the collection and use of data by Facebook, your rights in this regard, and on options for protecting your privacy, go to Facebook's privacy policy at https://www.facebook.com/about/privacy/. For specific information and details about the Facebook pixel and how it works, please visit the Facebook Help section: https://www.facebook.com/business/help/651294705016616. You can disable the function as described under https://de-de.facebook.com/business/help/1415256572060999?helpref=on_permalink displayed or under https://www.facebook.com/settings?tab=ads . To do so, you will need to be logged into Facebook.

XI. Web analysis and remarketing with Google services

1. Analytics

Based on our legitimate interests (i.e. interest in the analysis, optimisation, and economical operation of our online offer within the meaning of Art. 6 para. on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of art. 6 para. 1 (f). GDPR). Google uses cookies. The information generated by the cookie about the user's use of the website's online offerings is generally transmitted to and stored on a Google server in the USA.

Google has become subject to the Privacy Shield agreement, thereby offering a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active)

On our behalf, Google will use this information to evaluate the use of our online offering by the user, to compile reports on the activities within this online offering and to provide us with other services related to the use of this online offering and the internet. Pseudonymous usage profiles of users may be created from the processed data in this respect.

We use Google Analytics only with activated IP anonymisation. This means that the IP address of the user is truncated by Google within the member states of the European Union or in other countries that are party to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and be trunciated there.

The IP address sent by your browser will not be connected with other data from Google. The user may refuse the use of cookies by selecting the appropriate settings in their browser; the user can also prevent Google from collecting the data generated by the cookie regarding your use of the contents data and the processing of this data by Google by downloading and installing the browser plugin available via the following link: http://tools.google.com/dlpage/gaoptout?hl=de.

For further information on data usage by Google, setting and blocking options, please see the Google websites: https://www.google.com/intl/de/policies/privacy/partners ("How Google uses information from sites or apps that use our services"), https://www.google.com/policies/technologies/ads ("Use of data for advertising purposes"), https://www.google.de/settings/ads ("Control the information Google uses to show you ads").

We continue to use Google Analytics to evaluate data from double-click cookies and AdWords for statistical purposes. If you do not want this to be carried out, you can disable the function via the Ads Preferences Manager (http://www.google.com/settings/ads/onweb/?hl=de).

2. Google (re)marketing services

Based on our legitimate interests (i.e. interest in the analysis, optimisation, and economical operation of our online offer within the meaning of Art. 6 para. 1 (f). GDPR), we use marketing and re-marketing services ("Google Marketing Services" for short) from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, ("Google").

Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Google Marketing Services use cookies that are stored on your computer and allow us to target ads for and on our site to show users only ads that may be of interest to them. For example, if a user sees ads for products he has been interested in on other websites, this is referred to as "re-marketing". For these purposes, when our and other websites on which Google marketing services are active are accessed, Google directly executes a code from Google and (re-)marketing tags (invisible graphics or code, also known as "web beacons") are integrated into the website. These store a unique cookie (a small file) on the user's device. Comparable technology may also be used instead of cookies. Cookies can be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. In this file it is noted which websites the user visits, which content he/she is interested in and which offers he/she has clicked on, along with technical information about the browser and operating system, referring websites, visiting time as well as further information about the use of the online offering. The IP address of the users is also recorded, whereby we give notice within the framework of Google Analytics that the IP address is shortened within member states of the European Union or in other signatory states of the European Economic Area Agreement. Only in exceptional cases is it transmitted in full to a Google server in the USA and shortened there. The IP address is not combined with other data Google has about the user. The above information may also be linked by Google to such information from other sources. If the user subsequently visits other websites, the ads tailored to his/her interests can be displayed.

Users' data is processed pseudonymously within the framework of Google marketing services. This means that Google does not store and process, for example, the names or email addresses of users, but processes the relevant data cookie-related within pseudonymous user profiles. This means that, from Google's point of view, the ads are not managed and displayed for a specifically identified person, but for the cookie holder, regardless of who this cookie holder is. This does not apply if a user has expressly permitted Google to process the data without this pseudonymisation. The information collected by Google marketing services about users is transmitted to Google and stored on Google's servers in the USA.

One of the Google marketing services we use is Google AdWords, an online advertising platform. In the case of Google AdWords, each AdWords customer receives a different "conversion cookie". Thus, cookies cannot be tracked using the website of Adwords customers. The information obtained using the conversion cookie is used to create conversion statistics for the AdWords advertisers who have opted for conversion tracking. AdWords advertisers can find out the total number of users who have clicked on their ad and been redirected to the page with a conversion tracking tag. However, advertisers do not obtain any information that can be used to identify users personally.

We may include third-party advertisements based on the Google marketing service "AdSense". AdSense uses cookies to enable Google and its partner sites to serve ads based on users' visits to this site or other sites on the Internet.
We use Google Double Click for Publishers (DFP). This is an ad delivery platform hosted by us or by advertisers that optimises ad management whether ads are delivered to websites, mobile websites, mobile apps, games, or combinations of these elements. DFP provides a comprehensive toolkit with which we can deliver ads to target groups in our multiscreen world.

We can also use the "Google Tag Manager" to integrate Google analysis and marketing services into our website and manage them.

Further information on Google's use of data for marketing purposes can be found on the overview page: https://www.google.com/policies/technologies/ads, Google's privacy policy is available at https://www.google.com/policies/privacy.

If you wish to object to interest-based advertising by Google marketing services, you can use the setting and opt-out options provided by Google: https://www.google.com/ads/preferences.

XII. Online social media presence

1. Plugins for social media

Facebook Social Plugin

Based on our legitimate interests (i.e. interest in the analysis, optimisation, and economical operation of our online offer within the meaning of Art. 6 para. 1 (f) of the GDPR ) social plugins ("plugins") which are operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland ("Facebook"). The plugins can display interaction elements or content (e.g. videos, graphics or text contributions) and are identified by a Facebook logo (white "F" on a blue tile, the term "Like", or a "thumbs up" sign) or by the phrase "Facebook social plugin". The list and the appearance of Facebook social plugins can be viewed here: https://developers.facebook.com/docs/plugins/ . We also use Facebook Connect. Connect allows Facebook users to share their account information and friends with other websites or desktop applications. The settings made on Facebook to protect your privacy are also retained on other pages.

Facebook is certified under the Privacy Shield Agreement, which provides a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).

When users access a feature of this online offer that contain such a plugin, their device establishes a direct connection to Facebook's servers. The content of the plug-in is transmitted by Facebook directly to the user's device to be integrated into the online offer. Pseudonymous usage profiles of users may be created from the processed data; therefore, we have no influence on the scope of the data which Facebook collects using this plugin and inform you based on our knowledge.

By including the plugin, Facebook receives the information that a user has accessed the corresponding page of the online offer. If you are logged in to Facebook, Facebook can assign the visit to your Facebook account. If you interact with the plug-ins, for example by clicking the Like button or writing a comment, the corresponding information is directly transmitted from your browser to Facebook to be stored there. If you are not a member of Facebook, there is still the possibility that Facebook will gain knowledge of your IP address and store it. According to Facebook, only anonymised IP addresses are stored in Germany.

For the purpose and scope of data collection and further processing and use of data by Facebook, as well as the related rights and settings options to protect the privacy of users, please see Facebook's privacy policy: https://www.facebook.com/about/privacy/.

If a user is a Facebook member and does not want Facebook to collect data about him or her via this online offer and link it to his or her membership data stored on Facebook, he or she must log out of Facebook before using our online offer and delete his or her cookies. More settings and ways to revoke permission to use your data for advertising purposes are available in your Facebook profile settings: https://www.facebook.com/settings?tab=ads oder über die US-amerikanische Seite https://www.aboutads.info/choices/ oder die EU-Seite https://www.youronlinechoices.com/. The settings apply across platforms, i.e. they are applied to all devices, such as desktop computers or mobile devices.

Google Plus Plugin

Within our online offer, functions and contents of the service Google Plus, the Google LLC Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, ("Google") can be integrated and used via Plug In. Further information on Google's use of data for marketing purposes can be found on the overview: https://www.google.com/policies/technologies/ads, and Google's privacy policy can be found here: https://www.google.com/policies/privacy.

Youtube Plugin

Within our online offer, functions and contents of the service YouTube, by Google LLC Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, ("Google") can be integrated and used via plugin. Further information on Google's use of data for marketing purposes can be found on the overview: https://www.google.com/policies/technologies/ads, and Google's privacy policy can be found here: https://www.google.com/policies/privacy.

Pinterest plugin

We have included plugins from the social network Pinterest to enable content sharing. Pinterest uses cookies. The data generated (e.g. time of use or browser language) is transferred to Pinterest Inc. 635 High Street, Palo Alto, CA, 94301, USA and processed there. You can recognise the Pinterest plugin by the "Pin it" button. We have no influence on the amount of data Pinterest collects with the help of the plugin. We do not collect or process the information concerned. We therefore inform you according to our level of knowledge.

By integrating the plugin, Pinterest automatically receives log data that the browser transmits when the website is visited. According to Pinterest, log data may also include the IP address, the address of the website visited, the type and setting of the browser, and the date of the request. In addition, Pinterest can also collect device information, such as the operating system used or the like.

If you click the Pinterest "Pin It" button while you are logged into your Pinterest account, you can link the content of our pages to your Pinterest profile. This allows Pinterest to associate the visit to the website or app with the Pinterest user account.

For more information about Pinterest's data processing and privacy practices, please visit https://pinterest.com/about/privacy/. There you will also find information on the type of data processed and the purpose for which they are used.

Users can object to the processing and use of their data by Pinterest at any time by using "Opt Out Cookies". For more information, see https://help.pinterest.com/en/articles/we-support-do-not-track. Our websites use buttons from Pinterest, Inc, 808 Brannan St, San Francisco, CA 94103, United States. When you access one of our pages with a corresponding button, the contents of Pinterest servers are called up. If you are logged in with your Pinterest account, Pinterest has the ability to merge your browsing behaviour with other data. Pinterest's privacy policy applies: https://pinterest.com/about/privacy/.

Twitter plugin

It is also possible to post articles, etc., via Twitter. This service and an appropriately configured plugin are provided by Twitter, Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103 ("Twitter"). The Tweet button allows users to share blog articles via Twitter. You can find an overview of Twitter plugins and their appearance here: https://twitter.com/about/resources/buttons. We have no influence on the amount of data retrieved by Twitter.

By integrating the plugin, Twitter automatically receives protocol data which the browser transmits when visiting the website, even if users do not have a Twitter profile or are not currently logged in to Twitter. The log data may also include the IP address, the address of the visited website, type and setting of the browser, date of the tweet. In addition, Pinterest can also collect device information, such as the operating system used or the like.

If users are logged in to Twitter, Twitter can immediately assign their visit to our website to their Twitter user account. If you interact with the plugins, for example by pressing the "Tweet" button, that information is also transmitted directly to a Twitter server and stored there. The information is also published on your Twitter account and displayed to your contacts there.

The purpose and scope of data collection and the further processing and use of data by Twitter as well as the relevant rights and setting options for the protection of privacy can be found in the Twitter data protection information: https://twitter.com/privacy

If users do not want Twitter to associate the data collected via the website directly with their Twitter account, they must log out of Twitter before visiting the website. You can completely prevent Twitter plugins from loading by using browser add-ons, e.g. the script blocker "NoScript"(http://noscript.net/).

2. Social media links

Facebook link

We have provided a link to Facebook, which is operated by Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, or, if you are an EU resident, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook").

YouTube Link

We have provided a link to YouTube, Youtube LLC, 901 Cherry Ave, 94066 San Bruno, CA, USA, a company of Google Inc, Amphitheatre Parkway, Mountain View, CA 94043, United States "("Youtube"). We use the "enhanced privacy mode" option provided by YouTube. When you access one of our pages with a corresponding video, YouTube content is called up. If you are logged in with your Pinterest account, Pinterest has the ability to merge your browsing behaviour with other data. The use of YouTube videos is in the interest of an understandable representation of our services. YouTube's privacy policy applies:
https://www.google.de/intl/de/policies/privacy/.

Twitter link

We have also linked to Twitter, Inc. 1355 Market Street, Suite 900, San Francisco, CA 94103, USA ("Twitter"). When accessing the respective networks and platforms, the terms and conditions and the data processing guidelines of their respective operators apply. Unless otherwise stated in our privacy policy, we process the data of users who communicate with us within social networks and platforms, e.g. write articles on our websites or send us messages.

Omnistar INTERACTIVE

We use the service of the affiliate marketing platform OSI Affiliate, which is operated by Omnistar Interactive, LLC, 2421 Coolbrook Ct, Oviedo, Florida 32766, USA. In this context, we use trackers to determine whether and, if so, through which partners you have entered our site. Data processing is therefore based on Art. 6 para. 1 (f), GDPR. We have a legitimate interest in being able to fulfil our contractual relationships with the affiliate partners. You will find the privacy policy of Omnistar Interactive, LLC at https://www.osiaffiliate.com/privacy.htm. The purpose of data processing is to process the affiliate program. You can prevent cookies from being set by making settings in your browser.

Twitter Ads

We use the service "Twitter Ads", a service of Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland ("Twitter"). This company may permit Twitter, Inc. in the USA and its subsidiaries to process personal data. Twitter, Inc. is also certified under the Privacy Shield Framework. Twitter Ads stores and processes information about your user behaviour on our Internet pages. Twitter Ads uses cookies that are stored on your device.

We use Twitter Ads for marketing and optimisation purposes, in particular to analyse the use of our Internet presence and to be able to continuously improve individual functions and offers as well as the user experience. By statistically evaluating user behaviour we can improve our offer and make it more interesting for you as a user. We have a legitimate interest in being able to fulfil our contractual relationships with the affiliate partners. This is also our legitimate interest in the processing of the above data by the third party provider. The legal basis is Art. 6 para. 1 clause 1 (f) GDPR.

You can deactivate the installation of cookies in the settings of your browser. You can also prevent Twitter from collecting the above information on the following pages:

Please note that this setting will be deleted if you delete your cookies. You can object to the collection and forwarding of personal data or prevent the processing of this data by deactivating the execution of Java-Script in your browser. You can also prevent the execution of Java-Script code as a whole by installing a Java-Script blocker (e.g. https://noscript.net/). Please note that in this case you may not be able to use all functions of our website to their full extent. Twitter is certified under the Privacy Shield Framework. You can find Twitter's privacy policy at https://gdpr.twitter.com/de/faq.html and https://twitter.com/de/privacy.

Reddit Ads

We use the service Reddit-Ads of the social network reddit Inc, 548 Market St. #16093, San Francisco, California 94104, USA ("Reddit"). Google Adwords places a cookie on your computer, if you reached our website via a Google ad. These cookies expire after 30 days and are not used for personal identification. Reddit and we can see that you clicked on a Reddit ad and were redirected to our site. However, we only see the total number of anonymous users who clicked on our ad and were redirected to a page with a conversion tracking tag. We do not obtain any information that can be used to identify users personally. We have a legitimate interest in being able to fulfil our contractual relationships with the affiliate partners. This is also our legitimate interest in the processing of the above data by the third party provider. The legal basis is Art. 6 para. 1 clause 1 (f) GDPR. If you do not wish to participate in the tracking procedure, you can also prevent the necessary setting of a cookie via browser settings. You can also deactivate cookies for conversion tracking by calling up the following page in your browser and making the appropriate settings: https://www.reddit.com/personalization/ . Reddit is also certified under the Privacy Shield Framework. You can find Reddit's privacy policy here (https://www.redditinc.com/policies/privacy-policy/ and https://www.reddithelp.com/en/categories/advertising/policy-and-guidelines/reddit-advertising-policy).

Snapchat Ads

We use the service "Snapchat Ads" of Snap Inc. 63 Market Street, Venice, CA 90291, USA ("Snapchat"). Due to our legitimate interests in analysis, optimisation and economic operation of our online offer and for these purposes, the "Snap Pixel" of Snapchat is used within our online offer. With the help of Facebook pixels, Facebook is able to determine the visitors of our online offer as a target group for the presentation of advertisements (so-"Facebook ads"). Accordingly, we use the Facebook pixel to display our Facebook ads only to Facebook users who have shown an interest in our website or who have certain traits (e.g. interests in certain topics or products that are determined by the websites visited) that we transmit to Facebook ("custom audiences"). With the help of the Facebook pixel, we want to make sure that our Facebook ads correspond to the potential interest of the users and are not annoying. The Facebook pixel also helps us understand the effectiveness of Facebook ads for statistical and marketing research purposes by showing and evaluating whether users are directed to our site after they have clicked a Facebook ad ("conversion"). This is also our legitimate interest in the processing of the above data by the third party provider. The legal basis is Art. 6 para. 1 clause 1 (f) GDPR. Google is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law. You can prevent the use of cookies by setting your browser accordingly. Hints for the display of Snapchat-Ads can be found here: https://www.snap.com/en-US/privacy/privacy-center/, https://businesshelp.snapchat.com/en-US/article/snap-pixel-about.

XII. Newsletter

You can register on our website to receive our newsletter. We need your email address for this. In addition, in accordance with the relevant legal regulations, we must verify that you are actually the owner of the email address provided and that you would like to receive the newsletter. For this purpose we will send you a validation email. Our newsletter informs you about our products, events and news around games and eSports as well as the ROCCAT team.

Because your consent is required to send and receive the newsletter, you can revoke your consent to the collection and storage of your data at any time without giving reasons. Please use the unsubscribe link at the end of each newsletter or contact us.

We send the newsletter via the "MailChimp" service of the external shipping service provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA ("Rocket Science"). You can view this company's privacy policy here: https://mailchimp.com/legal/privacy/. The Rocket Science Group LLC d/b/a MailChimp is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with the European data protection level (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active). When using Mailchimp, we rely on our legitimate interests in accordance with Art. 6 para. 1 (f) GDPR. We have an interest in determining whether the newsletter is opened and what content is read. In this way we will improve our services in the future. We have concluded an order processing agreement with Rocket Science. The mailing service provider may use the data of the recipients in pseudonymous form, i.e without assignment to a user, to optimise or improve their own services, e.g. for the technical optimisation of shipping and the presentation of newsletters or for statistical purposes. Rocket Science does not use the data to send you newsletters and will not pass the data on to third parties.

XV. Right of the data subject

If your personal data is processed, you are a data subject as defined by the GDPR and you have the following rights with respect to the data controller:

1. The right to information

You can request that the responsible party confirm whether we will process personal data that concerns you.

If such processing is taking place, you can request to be informed by the responsible party regarding the following information:

  1. the purposes for processing the personal data;
  2. the categories of personal data being processed;
  3. the recipients or categories of recipients to whom the personal data concerning you has been or will be disclosed;
  4. the planned storage duration of personal data concerning you or, if specific information in this respect is not possible, criteria for determining the storage period;
  5. the existence of a right of rectification or deletion of personal data that concerns you or of a restriction on processing by the responsible party or of a right to object to such processing;
  6. the existence of a right of appeal to a supervisory authority;
  7. any available information on the origin of the data if the personal data has not been collected from the data subject;
  8. You have the right to request information regarding whether your personal information will be transmitted to a third-party country or an international organisation. In this respect, you can request the appropriate guarantees per Art. 46 GDPR in connection with the transmission.

2. The right of rectification

You have a right of rectification and/or completion with respect to the responsible party if the personal data processed concerning you is incorrect or incomplete. The responsible party must make the correction immediately.

3. The right to restriction of processing

Under the following conditions, you may request that the processing of personal data concerning you be restricted if:

  1. you dispute the accuracy of the personal data concerning you for a period that enables the responsible party to verify the accuracy of the personal data;
  2. the processing is unlawful and you refuse to delete the personal data and instead request that the use of the personal data be restricted;
  3. the responsible party does not need the personal data for longer than the processing's purposes, but you need it for the assertion, exercise or defence of legal claims, or
  4. you object to the processing in accordance with Art. 21 para. 1 of the GDPR and it is not yet clear whether the legitimate reasons of the responsible party outweigh your reasons.

Where processing of the personal data that concerns you has been restricted, such data – apart from being stored – may be processed only with your consent or for the purpose of asserting, exercising or defending rights or protecting the rights of another natural or legal person or on the grounds of an important public interest of the Union or of a Member State.
If the processing restriction has been restricted in accordance with the above conditions, you will be informed by the responsible party before the restriction has been lifted.

4. The right to deletion

Deletion obligation

You may request that the responsible party delete the personal data that concerns you immediately, and the responsible party will be obliged to delete this data immediately if one of the following reasons applies:

  1. the personal data that concerns you is no longer necessary for the purposes for which it was collected or otherwise processed;
  2. you revoke your consent to the processing pursuant to Art. 6 para. 1 (a) or Art. 9 para. 2 (a) of the GDPR and there is no other legal basis for processing;
  3. you submit an objection to the processing pursuant to Art. 21 para. 1 of the GDPR, and there are no overriding legitimate grounds for processing, or you submit an objection to the processing pursuant to Art. 21 para. 2 of the GDPR.
  4. the personal data that concerns you has been processed unlawfully;
  5. the deletion of personal data is required to comply with legal obligations according to Union law or the laws of the Member States to which the responsible party is subject;
  6. the personal data that concerns you has been collected in connection with offered information society services pursuant to Art. 8 para. 1 of the GDPR.

Passing information to third parties

If the responsible party has made the personal data that concerns you public and if the responsible party is obliged for its deletion pursuant to Art. 17 para. 1 of the GDPR, that responsible party shall take appropriate measures, including technical means, while taking into account available technology and implementation costs, to inform the parties responsible for data processing who process the personal data, that you as the person concerned have requested deletion of all links to such personal data or of copies or replications of such personal data.

Exceptions

The right to deletion does not exist insofar as the processing is necessary

  1. to exercise the right of freedom of expression and information;
  2. for the performance of a legal obligation required for processing under the law of the Union or of the Member States to which the responsible party is subject or for the performance of a task in the public interest or in the exercise of official authority conferred to the responsible party;
  3. for reasons of public interest in the field of public health in accordance with Art. 9 para. 2 (h) and (i), as well as Art. 9 para. 3 GDPR;
  4. to assert, exercise or defend legal claims.

5. Right to information

If you have exercised your right to have the responsible party correct, delete or limit the processing, this party is obliged to inform all recipients to whom the personal data that concerns you has been disclosed of this correction or deletion of the data or restriction on processing, unless this proves impossible or involves a disproportionate effort.
It is your right to have the responsible party inform you regarding such recipients.

6. The right of data portability

You have the right to obtain your personal data, which you have provided to the responsible party, in a structured, conventional and machine-readable format. In addition, you have the right to pass this data on to another responsible party without obstruction by the responsible party to whom the personal data was provided, insofar as

  1. the processing is based on consent pursuant to Art. 6 para. 1 (a) of the GDPR or Art. 9 para. 2 (a) of the GDPR or on a contract pursuant to Art. 6 para. 1 (b) of the GDPR and
  2. the processing is undertaken using automated procedures.

In exercising this right, you also have the right to request that the personal data concerning you be transferred directly from one responsible party to another responsible party, insofar as this is technically feasible. The freedoms and rights of other persons must not be affected by this.
The right to data portability shall not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority conferred on the responsible party.

7. The right of objection

You have the right, for reasons arising from your specific situation, to object to the processing of personal data concerning you at any time, which is carried out in accordance with Art. 6 Para. 1 (e) or (f) of the GDPR; the same applies to profiling based on these provisions.
The responsible party will no longer process the personal data that concerns you, unless the party can prove compelling legitimate reasons for the processing, which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If the personal data that concerns you is being processed for direct marketing purposes, you have the right to object at any time to the processing of the personal data that concerns you for the purpose of such marketing; this also applies to profiling, insofar as it is associated with such direct marketing.
If you object to processing that is for direct marketing purposes, the personal data that concerns you will no longer be processed for these purposes.
In the context of the use of information company services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object using an automated process. You can send an email to our data protection officer.

8. The right to revoke the data protection declaration of consent

You have the right at any time to revoke your data protection declaration of consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its revocation.

9. Automated decision in individual cases, including profiling

You have the right not to be subject to a decision based exclusively on automated processing - including profiling - that has legal effect against you or significantly impairs you in a similar manner. This does not apply if the decision

  1. is necessary for the conclusion or fulfilment of a contract between you and the responsible party;
  2. is permissible on the basis of legislation of the Union or the Member States, to which the responsible party is subject, and these laws contain adequate measures to safeguard your rights and freedoms, as well as your legitimate interests, or
  3. is undertaken with your express consent.

However, these decisions may not be based on special categories of personal data pursuant to Art. 9 para. 1 of the GDPR, unless Art. 9 para. 2 (a) or (g) of the GDPR and appropriate measures have been taken to protect your rights and freedom as well as your legitimate interests.
In the cases referred to in (1) and (3), the responsible party shall take reasonable measures to safeguard your rights, freedoms and legitimate interests, including at least the right to obtain the intervention of a person on the part of the responsible party, to state his or her own position and to challenge the decision.

10. The right of appeal to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right of appeal to a supervisory authority, in particular in the Member State where you reside, work or where the infringement is suspected, if you believe that the processing of personal data that concerns you is in contravention of GDPR.
The supervisory authority with which the appeal has been filed shall inform the appellant of the status and results of the appeal, including the possibility of a judicial remedy under Art. 78 of the GDPR.


© 2018 ROCCAT GmbH