The purpose of this data privacy statement is to inform you, as the user, about the gathering of personal data on this website. We therefore place great value on all the essential information concerning the protection of your data being presented in the most transparent way possible. Should anything nonetheless be unclear to you, or should you have any questions, and thus a need for clarification, please do not hesitate to contact us.

A. Controller

The Controller, within the meaning of the General Data Protection Regulation (Art. 4(7) GDPR) and the other national data privacy laws, as well as any other provisions under data protection law, is: Climbing Perch UG (haftungsbeschränkt) Lindenstr. 33A 12555 Berlin E-Mail: info@climbingperch.com Full provider identification: www.easytranscript.de/imprint These contact details are thus relevant for all matters of a data privacy nature relating to this website, as well as any claims on your part under data privacy law.

B. Collecting and storing of personal data when visiting our website

Below, we provide information about the processes relevant to data protection that take place when you visit our website.

1. Logfiles

We host the content of our website with IONOS SE, Elgendorfer Str. 57, 56410 Montabaur (hereinafter referred to as IONOS). When you visit our website, IONOS collects various log files, including your IP addresses. For details, please refer to the IONOS privacy policy: https://www.ionos.de/terms-gtc/terms-privacy. The use of IONOS is based on Art. 6 para. (1) (f) GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. (1) a DSGVO und § 25 Abs. 1 TDDDG, soweit die Einwilligung die Speicherung von Cookies oder den Zugriff auf Informationen im Endgerät des Nutzers (z. B. Device-Fingerprinting) im Sinne des TDDDG umfasst. Die Einwilligung ist jederzeit widerrufbar. We have concluded a contract for order processing (AVV) for the use of the above-mentioned service. This is a contract required by data protection law, which ensures that the personal data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.

2. Cookies and Consent-Management

We deploy so-called “cookies” on our website. These are small files that your browser creates automatically, and which are stored on your computer system if you visit our site. Cookies do not harm your computer system, and do not contain any viruses, Trojan horses, or other malware. In order to manage these cookies and external services in compliance with data protection regulations, we use consent technology from Borlabs Cookie (provider: Borlabs GmbH, Rübenkamp 32, 22305 Hamburg). When you visit our website, a Borlabs cookie is stored in your browser, documenting the consents you have given or the revocation of these consents. This data is not passed on to the provider of Borlabs Cookie. It is used to obtain the legally required consents for the use of cookies. The legal basis for this is Art. 6 (1) lit. c GDPR.
Translated with DeepL.com (free version) (1) c GDPR. We deploy cookies to improve our website, thus, for example, to design it to be more user-friendly and adapt it to users’ interests. In that respect, the following data is stored in the cookies and transmitted:

1. Language settings
2. Login details
3. Making use of website functions
4. Order Attribution: We use WooCommerce’s built-in order attribution to analyze the origin of orders (e.g., which ad or search engine a purchase was made through).

The data gathered in this way is pseudonymised by means of technical precautions. Therefore, it is generally not possible to assign the data to you. The data is not stored together with other personal data unless this is necessary for contract processing (e.g., for an order). The data processed by cookies is necessary for the purposes mentioned, in order to protect our legitimate interests, as well as those of third parties, pursuant to Art. 6 (1) (1) (f) GDPR. Most browsers accept cookies automatically. In order to prevent this, you may, however, configure your browser in such a way that no cookies are stored on your computer system, or that a notice always appears before a new cookie is placed. Completely deactivating cookies may, however, lead to you not being able to use all the functions of our website.

3. Website Analysis

Matomo

This website uses the open source web analytics service Matomo. With the help of Matomo, we are able to collect and analyze data about how visitors use our website. This allows us to find out, among other things, when page views were made and which region they came from. We also collect various log files (e.g., IP address, referrer, browsers and operating systems used) and can measure whether our website visitors perform certain actions (e.g., clicks, purchases, etc.). The use of this analysis tool is based on Art. 6 para. 1 lit. (f) GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising. If consent has been requested, processing is carried out exclusively on the basis of Art. 6 para. (1) a GDPR and Section 25 (1) TDDDG, insofar as consent includes the storage of cookies or access to information on the user’s terminal device (e.g., device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time. We use IP anonymization for analysis with Matomo. This means that your IP address is truncated before analysis, so that it can no longer be clearly assigned to you. We have configured Matomo so that Matomo does not store any cookies in your browser.

Google Ads

The website operator uses Google Ads. Google Ads is an online advertising program from Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters specific search terms in Google (keyword targeting). Furthermore, targeted advertisements can be displayed based on user data available to Google (e.g., location data and interests) (target group targeting). As website operators, we can evaluate this data quantitatively, for example by analyzing which search terms led to the display of our advertisements and how many advertisements led to corresponding clicks. The use of this service is based on your consent in accordance with Art. 6 para. (1) GDPR and Section 25 (1) TDDDG. Consent may be revoked at any time. Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://policies.google.com/privacy/frameworks and https://business.safety.google/controllerterms/. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when data is processed in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

Google Ads Remarketing

This website uses the functions of Google Ads Remarketing. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. With Google Ads Remarketing, we can assign people who interact with our online offering to specific target groups in order to then show them interest-based advertising on the Google advertising network (remarketing or retargeting). Furthermore, the advertising target groups created with Google Ads Remarketing can be linked to Google’s cross-device functions. This allows interest-based, personalized advertising messages that have been tailored to you based on your previous usage and browsing behavior on one device (e.g., cell phone) to also be displayed on another of your devices (e.g., tablet or PC). If you have a Google account, you can opt out of personalized advertising at the following link: https://adssettings.google.com/anonymous?hl=de. The use of this service is based on your consent in accordance with Art. 6 para. (1) GDPR and Section 25 (1) TDDDG. Consent may be revoked at any time. Further information and the privacy policy can be found in Google’s privacy policy at: https://policies.google.com/technologies/ads?hl=de. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when data is processed in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

Google Conversion-Tracking

This website uses Google Conversion Tracking. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. With the help of Google Conversion Tracking, Google and we can recognize whether the user has performed certain actions. For example, we can evaluate which buttons on our website are clicked how often and which products are viewed or purchased particularly frequently. This information is used to compile conversion statistics. We learn the total number of users who clicked on our ads and what actions they took. We do not receive any information that allows us to personally identify the user. Google itself uses cookies or similar recognition technologies for identification. The use of this service is based on your consent in accordance with Art. 6 para. (1) GDPR and Section 25 (1) TDDDG. Consent may be revoked at any time. Mehr Informationen zu Google Conversion-Tracking finden Sie in den Datenschutzbestimmungen von Google: https://policies.google.com/privacy?hl=de. The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the US that aims to ensure compliance with European data protection standards when data is processed in the US. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this can be obtained from the provider at the following link: https://www.dataprivacyframework.gov/participant/5780.

C. Contacting us

You can get in touch with us electronically by e-mail or contact form. In this case, the data that you send us will be transmitted to us and saved by us. This concerns the following:

1. Your name
2. Date of taking up contact
3. Your e-mail-address
4. Any further data, provided by you

If you write us and are interested in our services, the legal basis for the data processing is Art. 6 (1) (b) GDPR. This data, transmitted to us, will only be used for handling the conversation, and not passed on to third parties. We will delete this data once it is no longer required for the respective purpose. In other words, if the e-mail exchange with you has been terminated and we have addressed your concern in full. You at any time can revoke the consent to the processing of your data. For this purpose, please contact us using the above-mentioned options. In the event of a revocation, all your personal data that has been stored for the purpose of taking up contact with you will be deleted.

D. Processing of audio files through online transcription creation

If you have us create transcripts online, your data will be processed by third-party providers for this purpose. For this purpose, we use Microsoft Azure, a cloud service provided by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. The audio tracks are extracted from the media files you provide and uploaded as audio files to the Microsoft Azure cloud environment, where they are automatically converted into text. Microsoft Azure processes the data on our behalf in accordance with Art. 28 GDPR. Processing generally takes place in data centers within the European Union, but Microsoft reserves the right to process the data outside the EU in exceptional cases. In such cases, Microsoft takes appropriate measures to ensure that an adequate level of data protection is guaranteed in accordance with the requirements of the GDPR, for example by concluding EU standard contractual clauses. For more information on data processing by Microsoft Azure, please visit Microsoft’s privacy policy: https://privacy.microsoft.com/de-de/privacystatement. Secondly, we use Gladia, a provider of audio intelligence solutions operated by Gladia SAS, 38 Rue de la Tremblaie, 35510 Cesson-Sévigné, France, to process audio files and create transcripts. The audio tracks are extracted from the media files you provide and transmitted as audio files to the Gladia platform, where they are automatically converted into text. Gladia processes the data on our behalf in accordance with Art. 28 GDPR. The processing is carried out in accordance with Gladia’s data protection regulations, which provide for appropriate measures to protect your data. For more information on data processing by Gladia, please visit Gladia’s privacy policy: https://www.gladia.io/privacy-notice?utm The processing by Azure and Gladia is carried out in order to prepare the contents of the audio files in written form and make them available for further analysis. The processing of the audio files is carried out on the basis of Art. 6 para. (1) b GDPR (fulfillment of the user agreement). The audio files and the transcripts created from them will be deleted together with the other data that has also been transmitted (e.g., metadata, speaker names, and personal data within the transcript) as soon as they are no longer required to achieve the purpose for which they were collected, provided that there are no legal retention obligations.

E. Licensing and Use of the Software

The following information relates to the handling of your data in connection with an order/licensing, registration, and use of the software.

(1) Ordering/Licencing, User Account Registration

Should you place an order on our website, we will use the data provided by you to process the order and fulfil our contractual obligations. The following data, which is necessary to fulfil the contract, is saved when you order.

1. Your IP address
2. Date and time of the registration
3. Your name
4. Your address
5. Your e-mail-address
6. Verification for special licenses if applicable (e.g., student status for student licence).

We also use this data if you register a user account with us as part of licensing or in advance. You can update your data and manage your licenses via the user account. The legal basis for the storage of this data in the context of your registration and/or licensing our software follows from Art. 6 (1) (b) GDPR.

(2) Payment transaction

To carry out the payment transaction, we use third party payment provider. Besides the payment data (your bank details for the direct debit or your credit card details), the following data is also processed:

1. Your name
2. Your address
3. Your e-mail-address
4. IP address

The specified payment data and the other data will not be passed on by us or the payment provider to third parties who are not involved in the performance of the contract and the processing of the payment. Please note that payment providers can work with credit reporting agencies. It is therefore possible that your data will be transmitted to the companies named by the payment providers in their privacy policy. The legal basis for the storage and processing of this data follows based on the concluded contract from Art. 6 Paragraph 1 lit. b GDPR. You have the option to object to the processing of your data at any time. Please use the contact options mentioned above. In the event of an objection, all of your personal data will be deleted, unless there is a statutory retention period to the contrary. The following payment providers can be used: Stripe: This is a service provided by Stripe Payments Europe Ltd, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland. Please note that Stripe may work with credit reporting agencies. It is therefore possible that your data will be transferred to the companies mentioned by Stripe in their privacy policy. You can find data protection information on Stripe Payments Europe Ltd. here: https://stripe.com/de/privacy Paypal: Anbieter dieses Zahlungsdienstes ist PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg. Die Datenübermittlung erfolgt auf Grundlage von Art. 6 Abs. 1 lit. b DSGVO (Vertragserfüllung). Details entnehmen Sie der Datenschutzerklärung von PayPal: https://www.paypal.com/de/webapps/mpp/ua/privacy-full.

(3) Use of the software

During the use of the software, the following data is transmitted to us per active user license:

1. IP address
2. device name
3. and the license data (your mail address and password).

This data is necessary to check the validity of your license and to inform you whether updates are available for the software you are using. The legal basis for the storage and processing of this data results from the fulfilment of the concluded license agreement (from Art. 6 para. 1 lit. b DSGVO). In the context of a support request, additional user data may be loaded that is required to handle the support request (possibly personal data such as folder structures, file names or meta data of the transcripts). This data is no longer available to us after the support service has been completed.

F. Processing in third countries in general

Insofar as and unless otherwise stated above, your personal data will be processed in countries outside the European Union (EU) or the European Economic Area (EEA) exclusively based on the legal requirements according to Art. 44 GDPR. In the present case, this is exclusively the case either based on an adequacy decision by the European Commission (Art. 45 GDPR) and / or on the basis of suitable guarantees (Art. 46 GDPR).

G. General storage period

In general, personal data is only stored for as long as it is necessary to fulfil the purpose of data collection or to comply with the respective statutory retention period. After the purpose no longer applies or the deadline has expired, the data will be deleted.

H. Rights of data subjects

In so far as we have processed personal data of yours, you are the data subject within the meaning of the GDPR, and you have the following rights in relation to us:

• 15 GDPR – You may request information about your personal data processed by us. You can in particular request information about the purposes of the processing, the category of personal data, the category of recipients to who your data has been or will be disclosed, the scheduled duration of storage, the existence of a right of correction, deletion, limitation of the processing or opposition, the existing of a right of appeal, the origin of your data, in so far as it was not gathered by us, and also the existence of automated decision-making, including profiling and any meaningful information on the details of the latter.
• 16 GDPR – You may request the immediate correction of inaccurate personal data stored by us or the completion of incomplete personal data.
• 17 GDPR – You may request the deletion of your personal data stored by us, unless processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defense of legal claims.
• 18 GDPR – You may request the restriction of the processing of your personal data,
  • in so far as the accuracy of the data is disputed by you,
  • the processing is illegitimate, however you refuse to have it deleted and we no longer need the data,
  • exercise or defend legal claims or you have filed an objection to the processing under Art. 21 GDPR.
• 20 GDPR – You may receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format or request that it be transmitted to another controller.
• 7 para. (3) GDPR – you may revoke your consent, previously granted to us, at any time. The consequence of this is that we can no longer, in the future, continue the data processing that was based on such consent.
• 77 GDPR – You can lodge a complaint with a supervisory authority. You can usually, for this purpose, contact the supervisory authority at your usual place of residence or place of work or our place of business.

I. Right to object

Should your personal data be processed on the basis of justified interests pursuant to Art. 6 (1) (1) (f) GDPR, you are entitled, under Art. 21 GDPR, to file an objection to the processing of your personal data, in so far as grounds exist for the latter which arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which will be implemented by us without details of any special situation. If you wish to make use of your right of revocation or right of objection, it is sufficient to send an e-mail to the above-mentioned e-mail address.