Privacy Policy

With the following data protection declaration, we would like to inform you about the types of your personal data (hereinafter also referred to as "data") we process, for what purposes and to what extent in the context of providing our application. The Privacy Policy applies to all data processing operations carried out by us both as part of our in the context of our core activities as well as for the online media provided by us.

Responsible for data processing is:

Tobias Schnittger
Hochstraße 54
32051 Herford
Germany

E-mail: privacy@blazelock.com

Blazelock is developed & maintained by Schnittger Digits – an organization that develops purposeful, inspiring software.

If you are our customer or business partner or are interested in our services, the type, scope and purpose of the processing of your data depends on the contractual or pre-contractual relationship existing between us. In this sense, the data processed by us includes all data that is or has been provided by you for the purpose of using the contractual or pre-contractual services and that is required to process your inquiry or the contract concluded between us. Unless otherwise stated in the further information in this privacy policy, the processing of your data and its disclosure to third parties is limited to the data that is necessary and expedient to answer your inquiries and/or to fulfill the contract concluded between you and us, to protect our rights and to fulfill legal obligations. Insofar as we use third-party providers to provide our services, the data protection notices of the respective third-party providers apply.

Below you will find an overview of the legal bases of the GDPR on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. Should more specific legal bases also apply in individual cases, we will inform you of these in the privacy policy.

In addition to the data protection regulations of the GDPR, national data protection regulations apply in Germany. These include, in particular, the Act on the Protection against Misuse of Personal Data in Data Processing (Federal Data Protection Act - BDSG). In particular, the BDSG contains special regulations on the right to information, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes and transmission as well as automated decision-making in individual cases, including profiling. The data protection laws of the individual federal states may also apply.

According to the GDPR, you are entitled to the rights listed below, which you can assert at any time with the controller named above:

You can revoke your consent to the processing of personal data at any time.

You also have the right to object at any time to the processing of your data, which we base on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR. If you make use of your right to object, we ask you to explain the reasons. We will then no longer process your personal data unless we can prove to you that compelling legitimate grounds for data processing prevail.

The data processed by us will be deleted in accordance with the legal requirements as soon as the consents permitted for processing are revoked or other permissions cease to apply (e.g. if the purpose of processing this data no longer applies or it is not required for the purpose). If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted to these purposes. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons or whose storage is necessary for the assertion, exercise or defense of legal claims or to protect the rights of another natural or legal person.

As part of our processing of personal data, it may be transmitted to other bodies, companies, legally independent organizational units or persons or disclosed to them. The recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such cases, we observe the legal requirements and, in particular, conclude corresponding contracts or agreements with the recipients of your data that serve to protect your data.

We process data of our contractual and business partners, e.g. customers and interested parties (collectively referred to as "contractual partners"), in the context of contractual and comparable legal relationships and associated measures and with regard to communication with the contractual partners (or pre-contractual), for example to respond to inquiries.

We use this data to fulfill our contractual obligations. These include, in particular, the obligations to provide the agreed services, any updating obligations and remedies in the event of warranty and other service disruptions. In addition, we use the data to safeguard our rights and for the purpose of the administrative tasks associated with these obligations and the company organization. We also process the data on the basis of our legitimate interests both in the proper and efficient management of our business and in security measures to protect our contractual partners and our business operations from misuse, threats to their data, secrets, information and rights (e.g. to involve telecommunications, transport and other auxiliary services as well as subcontractors, banks, tax and legal advisors, payment service providers or tax authorities). Within the framework of applicable law, we only pass on the data of contractual partners to third parties to the extent that this is necessary for the aforementioned purposes or to fulfill legal obligations.

Our Internet pages use cookies. Cookies are small text files consisting of a series of numbers and letters that are stored on the device you are using. Cookies are primarily used to exchange information between the device you are using and our website. This includes, for example, the language settings on a website, the login status or the location where a video was watched.

We use cookies in accordance with the statutory provisions. We therefore obtain prior consent from users, unless this is not required by law. In particular, consent is not required if the storage and reading of information, including cookies, is absolutely necessary in order to provide users with a telemedia service (i.e. our online offering) that they have expressly requested. The revocable consent is clearly communicated to the users and contains the information on the respective cookie use.

We process user data in order to provide you with our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or end device.

We use the hosting provider STRATO (STRATO AG, Pascalstr. 10, 10587 Berlin, Germany) to host our online offering. Further information can be found on the provider's website and privacy policy.

We use a content delivery network (CDN) to deliver our Internet pages. A CDN is a network of regionally distributed servers connected via the Internet. Scaling storage and delivery capacities are made available via the CDN. This optimizes the loading times of our Internet pages and ensures optimum data throughput even at high load peaks. Some of the user requests on our websites are routed via CDN servers. Statistics are compiled from these data streams. On the one hand, this serves to detect potential threats to our website from malware at an early stage and, on the other hand, to continuously improve our offering and make our website more user-friendly for you as a user.

We use one of the world's leading CDN providers Cloudflare (Cloudflare Inc, 101 Townsend St., San Francisco, CA 94107, USA). Further information can be found on the provider's website and privacy policy. There is also an article about the scope of data collection here.

We use web analysis services to record and statistically evaluate the flow of visitors to our website. Among other things, such services collect data about the website from which you came to our website (so-called referrers), which pages of our website you accessed, how long you visited our pages and what interactions you made there. In addition, data on the browser, computer system and device type you use is collected.

To collect and analyze this data, we use the software Umami (Umami Software Inc., San Francisco, CA, USA), with explicit data storage in the EU. Further information can be found on the provider's website and privacy policy.

We take state-of-the-art technical and organizational security measures to comply with the provisions of data protection laws and to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties.

The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the access, input, transfer, safeguarding of availability and its separation. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

If IP addresses are processed by us or by the service providers and technologies used and the processing of a full IP address is not required, the IP address is truncated (also known as "IP masking").The last two digits or the last part of the IP address after a dot are removed or replaced by placeholders. The purpose of shortening the IP address is to prevent a person from being identified by their IP address.

To protect user data transmitted via our online services from unauthorized access, we use TLS/SSL encryption technology. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) are the cornerstones of secure data transmission on the Internet.These technologies encrypt the information transmitted between the website or app and the user's browser (or between two servers), protecting the data from unauthorized access. TLS, as the more advanced and secure version of SSL, ensures that all data transmissions meet the highest security standards. If a website is secured by an SSL/TLS certificate, this is signaled by the display of HTTPS in the URL. This serves as an indicator to users that their data is being transmitted securely and encrypted.