Legal Notice & Privacy Policy

Website operator

Kybergstr. 51b
D-82041 Oberhaching
Tel.: +49 176 327 489 17
Contact: Joanna Nibler
VAT ID No. DE 130 024 263 / Munich tax office I (146), 80335 Munich
Legal disclaimer:
Despite the fact that we carefully check all third party content, we cannot be liable or responsible for the content of any external links. Where this site contains links to other sites, the operators of these sites are solely liable for their contents. We do not take any responsibility for the contents of the linked pages. The design of this Website and the texts and images contained therein are protected by copyright.
Photo credits:
Header & background – – image showing a contract: Photo by Lewis Keegan on Unsplash
Background – telephone box & Big Ben: Photos from Pixabay and Pexels
Business projects- Outdoor apparel and sportswear: Photo by Ali Kazal on Unsplash
Business projects- Footwear: Photo by Emma Van Sant on Unsplash
Business projects – Safety Workwear : Photo by Frank Albrecht on Unsplash
Business projects – Trade shows: Photo by Daniel Irwin on Unsplash
Private clients – For official use: Photo by Ricardo Gomez Angel on Unsplash
Private clients – Job applications: Photo by Scott Graham on Unsplash

Privacy Policy

This Privacy Policy explains the nature, scope and purpose of the processing of Personal Data (hereinafter referred to as “Data”) within the context of our Website and its associated websites, functions, contents and our external online presence, i.e. our social media profile. (hereinafter collectively referred to as the “Website”). In respect of the terminology used herein, i.e. the words “processing” or “controller”, we refer to the definitions set forth in Article 4 of the General Data Protection Regulation (GDPR).


JoannaN. Translations
Joanna Nibler
Kybergstr. 51b
D-82041 Oberhaching

Types of data which are subject to the processing:

– Personal data (e.g. names, addresses).
– Contact details (e.g. email, phone number).
– Content (e.g. text input, photographs, videos).
– Usage data (e.g. pages visited, interest in content, access times).
– Meta and communication data (e.g. device information, IP addresses).

Purpose of the processing

– To make the Website, its functions and contents available.
– To respond to contact requests and communicate with users.
– To ensure security.
– To measure website traffic/for marketing


“Personal Data” means any information relating to an identified or identifiable natural person (hereinafter referred to as the “Data Subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (i.e. a cookie) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

“Processing” means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means. This term has a very broad meaning and describes almost any form of data processing.

“Controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data.

Relevant legal basis

In accordance with Article 13 of the General Data Protection Regulation (GDPR), we provide you with information on the legal basis for the processing. Insofar as the legal basis is not mentioned in the Privacy Policy, the following shall apply: The legal basis for obtaining consents is point (a) of Article 6 (1) Article 7 GDPR, the legal basis for processing for the fulfilment of our services, performance of contracts and responding to enquiries is point (b) of Article 6 (1) GDPR, the legal basis for processing for compliance with our legal obligations is point (c) of Article 6 (1) GDPR, and the legal basis for processing for the purposes of safeguarding our legitimate interests is point (f) of Article 6 (1) GDPR. . Insofar as processing is necessary in order to protect the vital interests of the Data Subject or of another natural person, point (d) of Article 6 (1) GDPR shall serve as the legal basis.

Security measures

Please keep yourself up to date with the contents of our Privacy Policy. We shall amend our Privacy Policy whenever changes in the data processing operations performed by us make this necessary We shall inform you if you are required to take action as a result of such changes (i.e. giving your consent) or some other individual notification is needed.

Working with processors and third parties

Where we disclose Data to other persons and companies (processors or third parties) within the scope of our processing, or transfer such Data to them, or otherwise grant them access to such Data, this shall only take place in compliance with applicable laws (i.e. if the transfer of Data to a third party, e.g. a payment provider, is necessary for performance of the contract in accordance with point (b) Article 6(1) GDPR ), when you have given your consent, a legal obligation provides for this or on the basis of our legitimate interests (i.e. when using representatives, web hosting companies, etc.).

Where we engage a third party to process Data on the basis of a so-called “Processing Contract”, this shall take place on the basis of Article 28 GDPR.

Transfers to third countries

Where we process Data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)), or this occurs within the context of making use of the services of third parties or the disclosure or transfer of Data to third parties, this shall only take place if it is necessary for the performance of our (pre-)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of our legitimate interests Subject to regulatory and legal requirements we shall only process Data in a third country, or have such Data processed there, in the event that the special conditions laid down in Article 44, et seq. GDPR exist. This means that the processing shall, for example, take place on the basis of special guarantees such as the officially recognised assurance that the level of data protection is equivalent to that ensured within the Union, (e.g. the “Privacy Shield” for the USA) or in compliance with officially recognised special contractual obligations (so-called “standard contract clauses”)

Rights of the Data Subjects

You shall have the right to obtain confirmation as to whether or not Personal Data concerning yourself are being processed, to information relating to this Data, to further information and a copy of this Data in accordance with Article 15 GDPR.

In accordance with Article 16 GDPR, you have the right to have incomplete Personal Data completed or obtain rectification of inaccurate Personal Data.

In accordance with Article 17 GDPR you shall have the right to obtain the erasure of Personal Data concerning yourself without undue delay and/or alternatively in accordance with Article 18 GDPR to obtain restriction of processing of Data.

In accordance with Article 20 GDPR, you shall have the right to receive the Personal Data concerning yourself which you have provided to us and to obtain the transmission of such Data to another controller.

Furthermore, in accordance with Article 77 GDPR, you shall have the right to lodge a complaint with a supervisory authority.

Right of withdrawal

In accordance with Article 7(3), you shall have the right to withdraw your consent with effect for the future.

Right to object

Sie können der künftigen Verarbeitung der Sie betreffenden Daten nach Maßgabe des Art. 21 DSGVO jederzeit widersprechen. The objection may especially be lodged against the processing of Personal Data concerning yourself for direct marketing purposes.

Cookies and the right to object to direct marketing

“Cookies” are small files which are placed on the computers of users Cookies can store different types of information. They are primarily used to store information about a user (or the device on which the cookie is stored) when, and also after, they visit the Website. Temporary cookies, otherwise known as “session cookies” or “transient cookies”, are cookies which are deleted after the user leaves the Website and closes the browser. . For example, cookies can keep track of the items in a user’s shopping cart or their login status. “Permanent” or “persistent cookies” are cookies which remain on the device after the browser has been closed. For instance, they are used to remember your login status when you go back to the site a few days later. Cookies can also be used to remember your preferences which can then be used to measure Website traffic or for marketing purposes. “Third party cookies” are cookies which are placed by other service providers rather than the controller who operates the Website (cookies placed by the controller are known as “first party cookies”).

We can place temporary and permanent cookies and set out how we use them within the framework of our Privacy Policy

If you prefer not to have cookies stored on your device, you can visit the options menu on your browser to alter the settings. Cookies that have been stored on your device can be deleted in your browser settings. If you reject cookies you may lose some of the Website’s functionality.

You can choose to opt out of cookies being used for the purpose of online marketing by a significant number of providers, particularly to track your browsing activity, by visiting the US site or the EU-site Furthermore, you can manage the cookies saved on your computer by using the opt out preferences in your browser settings. You should be aware that this may lead to some of the services of the Website not functioning properly.

Erasure of Data

The Data processed by us shall be erased, or their processing restricted, in accordance with Articles 17 and 18 GDPR. Except as may be specifically set forth within the framework of this Privacy Policy, the Data stored by us shall be erased as soon as they are no longer necessary in relation to the purposes for which they were collected and their erasure is not in conflict with statutory retention periods. In the event that the Data is not erased because it is necessary for other purposes permitted by law, their processing shall be restricted. This means that the Data shall be blocked and not processed for other purposes. For instance, this applies to Data that has to be retained in compliance with tax and commercial law.

Legal and regulatory requirements in Germany prescribe a retention period of 6 years in accordance with § 257 (1) HGB [Handelsgesetzbuch = German Commercial Code] (books of accounts, inventories, opening balances, financial statements, commercial letters of credit, accounting records, etc.) and of 10 years in accordance with § 147 (1) AO [Abgabenordnung = German Fiscal Code] (books, records, management reports, accounting records, commercial letters of credit, business correspondence, documents that are relevant for tax, etc.).

Legal and regulatory requirements in Austria prescribe a retention period of 7 years in accordance with § 132 (1) BAO [Bundesabgabenordnung = Austrian Federal Fiscal Code] (bookkeeping documents, receipts/invoices, accounts, records, business documents, statements of income and expenses, etc.), of 22 years in connection with real estate and 10 years for documents in connection with electronically supplied services, telecommunication services, and television and radio broadcasting services supplied to non-business persons in EU member states and for which the mini One Stop Shop scheme was made use of.

Business-related processing

Additionally, we process the
– contract data (i.e. subject-matter of the contract, term, customer category).
– payment data (i.e. bank details, payment history)
of our clients, prospective customers and business partners for the purpose of performing the contractual obligations, providing services and customer care, and for marketing, advertising and market research purposes.


The purpose of the hosting services that we use is to provide the following services: infrastructure and platform services, processing capacity, storage space, data base services, security services and technical support and maintenance that we need in order to operate this Website.

In this connection, we, and/or our hosting services provider, process the Personal Data, contact details, content, contract data, usage data, and meta and communication data of clients, prospective customers and visitors to this Website on the basis of our legitimate interest in the efficient and secure ongoing availability of the services of this Website in accordance with point (f) of Article 6 of Article 6 (1) GDPR in connection with Article 28 GDPR (conclusion of a Processing Contract).

Collection of access data and log files

On the basis of our legitimate interest within the meaning of point (f) of Article 6 (1) GDPR, we, and/or our hosting services provider, collect the access data every time you visit the server on which this service is located (so-called log files). Access data includes the name of the requested page, file, request date and time, volume of data, notification as to whether the request was successful, browser type and version, operating system of the user, referrer URL (the page visited previously), IP address and requesting provider.

Log file information is kept for safety reasons (i.e. for fraud and sexual abuse investigations) for a maximum of 7 days after which it is erased. Data which needs to be kept to be used as evidence is exempt from erasure until the case in question has been closed.

Agency services

We process the Data of our clients within the scope of our contractual obligations which involve conceptual and strategic advice, campaign planning, software and design development/advice or care, the implementation of campaigns and processes/handling, server administration, data analysis/consulting services and training.

In this connection, we process Personal Data (i.e. customer master data such as names and addresses), contact details (e.g. email, phone number), content (e.g. text input, photographs, videos), contract data (i.e. subject-matter of the contract, term), payment data (i.e. bank details, payment history), and usage and meta data (i.e. when evaluating and measuring the success of marketing activities). As a matter of principle, we do not process special categories of Personal Data, unless these form an integral part of an engagement to carry out processing activities. The Data Subjects include our clients, prospective customers, their clients, users, visitors to the Website, employees and third parties. The purposes of the processing is the performance of contractual obligations, invoicing and our customer service. The legal basis of the processing operations is point (b) of Article 6 (1) ) GDPR (performance of a contract), point (f) of Article 6 (1) GDPR (analysis, statistics, optimisation, security measures). We process Data that is necessary for the establishment and fulfilment of contractual obligations and draw your attention to the necessity of your information. The Data shall only be disclosed externally in the event that this is necessary within the context of an engagement. When we process Data which we have received within the scope of an engagement, we shall act in compliance with the instructions of the engaging entity and the legal requirements of a processing engagement in accordance with Article 28 GDPR and shall process the Data for no purpose other than the purpose of the engagement.

We shall erase the Data at the expiration of the warranty period and other such periods stipulated by law. We shall review the Data every three years to establish whether its retention is still necessary; in cases in which a retention period is regulated by law, the erasure shall take place when this deadline expires (6 years in accordance with § 257(1) HGB, 10 years in accordance with § 147(1) AO). Where Data has been disclosed to us by the engaging entity within the scope of an engagement we shall erase the Data in accordance with the requirements of the engagement, as a matter of principle at the end of the engagement.

Performance of contractual obligations

We process Personal Data (i.e. names, addresses, contact details of users), contract data (i.e. services supplied, names of contacts, payment information) for the purpose of fulfilling our contractual obligations and service commitments in accordance with point (b) of Article 6 (1) GDPR. Fields marked as mandatory in online data entry forms are necessary for the conclusion of a contract.

Where use is made of our online services we shall store the IP address and the time of the user activity. The storage is based on our legitimate interests and also those of the users in protection against misuse and other unauthorized use. We shall not transmit such Data to third parties unless this is necessary to enforce our claims or we are legally required to do so in accordance with point (c) of Article 6 (1) GDPR.

We process usage data (e.g. pages visited on our Website, interest in our products) and content data (e.g. entries in contact forms or user profiles) for advertising purposes in a user profile in order to show a user product information, for example, based on their previous usage of the site.

We shall erase the Data on expiry of the warranty period and other such periods stipulated by law. We shall review the Data every three years to establish whether its retention is still necessary; in cases in which a retention period is regulated by law, the erasure shall take place when this deadline expires. Data entered in customer accounts shall be kept until the account is erased. Data entered in customer accounts shall be kept until the account is erased.

Administration, financial accounting, office organisation, contact management

We process Data within the context of administrative tasks, the organisation of our business, financial accounting and compliance with legal requirements, i.e. retention. This involves processing the same Data as we process in connection with the provision of our contractual services. The basis for this processing is point (c) Article 6 (1) GDPR and (f) Article 6 (1) GDPR The Data Subjects are customers, prospective customers, business partners and visitors to the Website. The purpose of, and our interest in, processing this Data is to carry out administrative, financial accounting, office organisation and data archiving functions, i.e. functions which serve the purpose of maintaining our business operations, performing our tasks and providing our services. With respect to the erasure of Data relating to the performance of a contract and contract-specific communication, the same principles as those specified for these processing activities shall apply.

We disclose or transmit Data to tax authorities, consultants, i.e. tax consultants or auditors, billing centres and payment providers.

We shall also store information on suppliers, event organisers and other business partners based on our business interests, i.e. for the purpose of establishing contact at a later date. Such Data, which are mainly company-related, shall be stored permanently.

Making contact

When users contact us (i.e. via our contact form, email, telephone or social media), their details shall be processed for the purpose of responding to and dealing with the enquiry in accordance with point (b) of Article 6 (1) GDPR. User data may be stored in a customer relationship management system (“CRM system”) or a comparable customer interaction system.

We erase enquiries where the Data are no longer necessary. We shall review such Data every two years to establish whether its retention is still necessary. Furthermore, the retention periods required by law shall also apply.

Google Fonts

We have integrated the “Google Fonts” into our Website, a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA,. Privacy policy:, Opt-Out:

Compiled using [the data security generator] of Dr Thomas Schwenke (lawyer)


Joanna Nibler

Tel: +49 176 327 489 17