Privacy policy



Privacy policy for the ChessLink app 


Dear customers, 

in the following we would like to give you some information about data protection when using our ChessLink app: The ChessLink app is used to connect our electronic chess boards with providers such as: online platforms, which enable different types of games, e.g. playing online against other players. We do not collect any personal data via the download of the app, nor do we obtain such data in any other way.   

To play online, the app must be connected to the chess board on the one hand, and to an online server on the other. Currently, the app supports play on the Lichess.org server. If you play on Lichess.org. or other providers' platforms, the collection and processing of your data is subject to the processes and regulations of the respective provider. We have no access to this. 

To connect the app to the chess board via Bluetooth, it is necessary that you enable location sharing on your device. Without this enablement, a Bluetooth connection in Android is not possible. The app does not transmit any location information to us or third parties. 

The login to the Lichess server is anonymized via a Lichess API Access Token, which you have to create in your Lichess account. The app exchanges data with the Lichess server. No personal data is transmitted to us, neither by the app nor by Lichess.org. 

In the future, we plan to analyze the usage behavior of our ChessLink app in order to increase the benefit for the users of our app. Examples include which game variants are used frequently, which features are popular in the app, and with which of our chess products the app is used. All evaluations that we carry out on the usage behavior of our app do not allow you to be identified personally, are carried out completely anonymously and serve to improve our app and our products. 

The responsible party is Millennium 2000 GmbH Hegener & Weiner, Heisenbergbogen 1, 85609 Aschheim (Dornach), Germany, represented by the Managing Directors Maximilian Hegener and Thomas Karkosch, Tel: +49 89 290035-0 (Fax: -20); e-Mail:info@millennium2000.de. You can reach our data protection officer at the above address or by e-mail at datenschutz@millennium2000.de.

Privacy policy for the online shop 


In the following, we inform you about the processing of your personal data in the context of the use of our online offer. 

Responsible 
Millennium 2000 Digital GmbH
Heisenberbogen 1
85609 Aschheim
Phone: +49 89 290035-0
Fax: +49 89 290035-20
Mail: info@millennium2000.de 

Contact 
If you have any questions regarding data protection, please use the contact details above. 
Data Protection Officer
Michelle Hahnemann
Millennium 2000 GmbH
Heisenbergbogen 1
85609 Aschheim
Phone: +49 89 290035-0
Fax: +49 89 290035-20
Mail: 
datenschutz@millennium2000.de 

Storage period 
We generally delete your personal data when it is no longer necessary for the purposes for which it was collected or otherwise processed. 
If we have asked for your consent and you have given it, we will delete your personal data if you withdraw your consent and there is no other legal basis for the processing.
We will delete your personal data if you object to the processing and there are no overriding legitimate grounds for the processing or if you object to the processing for the purposes of direct marketing or related profiling.
If deletion is not possible because processing is still necessary for compliance with a legal obligation (legal retention periods, etc.) to which we are subject or for the assertion, exercise or defense of legal claims, we restrict the processing of your personal data. 
You can also find more information on the storage period in the following passages. 

Your rights
You have the following rights towards us regarding your personal data: 
  • Right to information 
  • Right to correction 
  • Right to deletion 
  • Right to restrict processing 
  • Right to object to processing 
  • Right to data portability 

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data carried out on the basis of Article 6 (1) (e) or (f) DS-GVO; this also applies to profiling based on these provisions. We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. If we process your personal data for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing; this also applies to profiling, insofar as it is related to such direct marketing. We will then no longer process your personal data for these purposes.

You have the right to revoke consent to the processing of your personal data at any time if you have given us such consent. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. 

You have the right to complain to a supervisory authority about the processing of your personal data by us. 

Provision of your personal data 

The provision of your personal data is generally not required by law or contract and is not necessary for the conclusion of a contract. In principle, you are not obliged to provide your personal data. If this should nevertheless be the case, we will point this out to you separately when collecting your personal data (for example, by marking the mandatory fields in input forms). 

Failure to provide your personal data regularly means that we will not process your personal data for one of the purposes described below and that you will not be able to take advantage of an offer related to the respective processing (example: without providing your e-mail address, you will not receive our newsletter).

Web hosting

We use external services for web hosting. These services may have access to personal data that is processed in the context of the use of our online offer. 

Security 

For security reasons and to protect the transmission of your personal data and other confidential content, we use encryption on our domain. You can recognize this in the browser line by the string "https://" and the lock symbol.

Contacting 

 If you contact us, we process your personal data in order to process your contact. If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the processing of your contact. If the processing is necessary to fulfill a contract with you or to carry out pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 (1) lit. b DS-GVO.

Cookies & similar technologies

Cookies are used. Cookies are text information that is stored on your terminal device. A distinction is made between session cookies, which are deleted immediately after you close your browser, and persistent cookies, which are only deleted after a certain time.

In addition to cookies, similar technologies (tracking pixels, web beacons, etc.) may also be used. In this respect, the following statements on cookies also apply to similar technologies. Likewise, these explanations apply to further processing in connection with cookies and similar technologies (analysis & marketing, etc.). This also applies in particular to any consent you may have given for the use of cookies. This also extends to other technologies and to further processing in connection with cookies and similar technologies.

Cookies may serve to enable the use of certain functions. Cookies can also be used to measure the reach of our online offer, to design it according to needs and interests and thus to optimize our online offer and our marketing. Cookies can be used by us and by external services. 

We use a consent tool to manage the cookies used and the relevant consents. Details on the cookies used (purpose, storage period, external service, etc.) and the Consent Tool can be found in the following passages and the Consent Tool we use. 

If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 (1) lit. f DS-GVO. Our legitimate interest is the management of the cookies used and the related consents. Depending on the purpose of the processing, our legitimate interests can be inferred from the following passages. 

You can prevent the storage of cookies by setting your browser accordingly. Below we provide links for typical browsers where you can find more detailed information on the management of cookie settings:

If you prevent cookies from being saved, this may affect the proper functioning of our online service. If you delete all cookies, the above settings will also be lost and must be made again.
Furthermore, you can activate the "Do-Not-Track" function of your browser to indicate that you do not wish to be tracked. Below we provide links for typical browsers where you can find more information about the "Do-Not-Track" setting:
You can also revoke or manage your consent with regard to the cookies used in the Consent Tool we use.

Shop
If you place an order, we process your personal data in order to process and handle your order and to comply with the associated rights and obligations.
If you create a customer account, we process your personal data to enhance your shopping experience and to facilitate the ordering process for future orders.
If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the processing and handling of your order. 
If the processing is necessary to fulfill a contract with you or to carry out pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 (1) lit. b DS-GVO. Recipients of your personal data may be third parties (fulfillment service providers, IT service providers, shipping or transport service providers, banks, tax advisors, lawyers, authorities, etc.), insofar as this is necessary for the processing and handling of your order and the associated rights and obligations.
We use external services to process payments. We transmit your personal data to these services insofar as this is necessary for the processing of payments. For more information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to the further information on the services we use at the end of this passage and the links provided there.
PayPal
Provider: PayPal (Europe) S.à r.l. et Cie, S.C.A., Luxembourg.
Website: 
https://www.paypal.com/de/home/
Further information & data protection: 
https://www.paypal.com/de/webapps/mpp/ua/privacy-full?locale.x=en_US

Newsletter
If we have asked for your consent and you have given it, we will process your e-mail address in order to conduct e-mail marketing and, if necessary, other personal data in order to address you personally in the process. The legal basis for the processing is Art. 6 para. 1 lit. a DS-GVO. The contents of the e-mail marketing are specifically described when obtaining your consent. Incidentally, the e-mail marketing contains information about us, our goods and services.
We use the so-called double opt-in procedure to prevent possible misuse of your personal data. For this purpose, after collecting your e-mail address, we send you an e-mail to the e-mail address you provided, in which we ask you to confirm that you actually want the e-mail marketing. The legal basis for the processing is Art. 6 (1) lit. f DS-GVO. Our legitimate interest here is the legally compliant implementation of email marketing.
We log the time of granting your consent and the time of your confirmation as well as your IP address and the content of your declaration of consent in order to be able to prove that your consent was obtained in compliance with the law. The legal basis for the processing is Art. 6 (1) lit. f DS-GVO. Our legitimate interest here is the legally compliant implementation of email marketing.
We use external services for email marketing. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and under the links provided there.
You can revoke your consent at any time. The revocation of your consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. To withdraw your consent, you can use the link provided for this purpose in the emails or contact us at the contact details provided above.
If you have revoked your consent, we reserve the right to process your personal data in a so-called blacklist/blocklist in order to be able to ensure in the future that no further e-mail marketing takes place in connection with this personal data. The legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the prevention of unwanted email marketing.
We process your personal data in the context of tracking or success measurements in order to measure the reach of our email marketing, to design it according to needs and interests and thus to optimize our email marketing. This may also involve profiling (for purposes of advertising, personalized information, etc.). Profiling may also take place across services and devices. If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the optimization of our email marketing. A separate revocation of your consent or objection with regard to tracking or success measurements is unfortunately not possible. You must use the above options to revoke your consent or object to the processing of your personal data for the purpose of email marketing altogether.
CleverReach
Provider: CleverReach GmbH & Co. KG, Germany.
Website: https://www.cleverreach.com/en/
Further information & data protection: https://www.cleverreach.com/en/privacy-policy/

Existing customer marketing - advertising by e-mail
If we have received your e-mail address in connection with the sale of a good or service and you have not objected to this, we will process your e-mail address in order to conduct e-mail marketing for our own similar goods or services and, if necessary, other personal data in order to address you personally in the process. The legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is direct advertising.
We use external services for email marketing. For more information about the services used, the scope of data processing, and the technologies and processes involved in the use of the respective services, please refer to the further information about the services we use at the end of this passage and the links provided there.
You have the right to object to the processing of your personal data for the purpose of e-mail marketing at any time, without incurring any costs other than the transmission costs according to the prime rates. We will then no longer process your personal data for the purpose of e-mail marketing. To object to the processing of your personal data for the purpose of e-mail marketing, you can use the link provided for this purpose in the e-mails or contact us at the contact details provided above.
If you have objected to the processing of your personal data for the purpose of email marketing, we reserve the right to process your personal data in a so-called blacklist/blocklist in order to be able to ensure in the future that no further email marketing takes place in connection with this personal data. The legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the prevention of unwanted email marketing.
CleverReach
Provider: CleverReach GmbH & Co. KG, Germany.
Website: https://www.cleverreach.com/en/
Further information & data protection: 
https://www.cleverreach.com/en/privacy-policy/

Analysis & Marketing
We process your personal data in order to measure the reach of our online offer, to design it according to needs and interests, and thus to optimize our online offer and our marketing.
If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the optimization of our online offer and our marketing.
We use external services for analysis and marketing. This may also involve profiling (for purposes of advertising, personalized information, etc.). Profiling may also take place across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the more detailed information about the services we use at the end of this passage and the links provided there.
You can prevent the storage of cookies by setting your browser accordingly. Below we provide links for typical browsers where you can find more detailed information on managing cookie settings:
If you prevent cookies from being saved, this may affect the proper functioning of our online service. If you delete all cookies, the above settings will also be lost and must be made again. Furthermore, you can activate the "Do-Not-Track" function of your browser to indicate that you do not wish to be tracked. 
Below we provide links for typical browsers where you can find more detailed information about the "Do-Not-Track" setting:
Facebook pixel with Custom Audiences and advanced data matching.
Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc, United States of America.
Website: https://www.facebook.com/business/help/744354708981227?id=2469097953376494
Further information & privacy policy: https://www.facebook.com/business/help/742478679120153?id=1205376682832142&recommended_by=218844828315224https://www.facebook.com/business/help/1474662202748341?id=2469097953376494&locale=de_DEhttps://de-de.facebook.com/business/help/611774685654668https://de-de.facebook.com/privacy/explanationhttps://de-de.facebook.com/policies/cookies/https://www.facebook.com/help/566994660333381?ref=dp and https://de-de.facebook.com/help/568137493302217
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU Standard Contractual Clauses from us.

Google Ads Conversion Tracking
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://support.google.com/google-ads/answer/1722022?hl=en
Further information & data protection: https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. For more information on this and Google's responsibility, please see the following link: https://business.safety.google/gdpr/. A copy of the EU standard contractual clauses can be viewed there.

Google Analytics
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: 
https://marketingplatform.google.com/intl/de/about/analytics/
Further information & data protection: 
https://support.google.com/analytics/answer/6004245?hl=en and https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. For more information on this and Google's responsibility, please see the following link: 
https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Google Remarketing
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: 
https://support.google.com/google-ads/answer/2453998
Further information & data protection: 
https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. For more information on this and Google's responsibility, please see the following link: 
https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Google Tag Manager
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: 
https://support.google.com/tagmanager/answer/6102821?hl=en
Further information & data protection: 
https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. For more information on this and Google's responsibility, please see the following link: 
https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Google Universal Analytics
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: 
https://support.google.com/analytics/answer/2790010?hl=en
Further information & data protection: 
https://support.google.com/analytics/answer/6004245?hl=en and https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. For more information on this and Google's responsibility, please see the following link: 
https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Twitter Analytics
Provider: If you live within the European Union, EFTA countries or the United Kingdom, the controller is Twitter International Company, Ireland. If you live in the United States of America or in another country outside the European Union, EFTA countries or the United Kingdom, the controller is Twitter, Inc, United States of America.
Website: 
https://analytics.twitter.com/about
More information & privacy: 
https://twitter.com/de/privacy
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU Standard Contractual Clauses from us.

Social media presences
We maintain social media presences with external services in order to be able to communicate with users there and thus optimize our online offering and our marketing. This privacy policy also applies to the following social media presences:
https://www.facebook.com/MILLENNIUM.Digital.Chess
https://twitter.com/ChessMillennium
https://www.youtube.com/channel/UCKtaA-y9KR_1n6dn2sxkxDQ
If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the optimization of our online offer and our marketing.
Profiling (for purposes of advertising, personalized information, etc.) may also occur in the context of the use of external services. Profiling may also take place across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

Facebook
Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc, United States of America.
Website: 
https://www.facebook.com The provider and we are jointly responsible parties. We have entered into an agreement with the provider to this effect. You can request a copy of the agreement from us.
Further information & privacy: 
https://developers.facebook.com/docs/plugins/https://www.facebook.com/legal/terms/information_about_page_insights_datahttps://de-de.facebook.com/privacy/explanationhttps://de-de.facebook.com/policies/cookies/https://www.facebook.com/help/566994660333381?ref=dp and https://de-de.facebook.com/help/568137493302217.
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU standard contractual clauses from us.

Twitter
Provider: If you live within the European Union, EFTA countries or the United Kingdom, the controller is Twitter International Company, Ireland. If you live in the United States of America or in another country outside the European Union, EFTA countries or the United Kingdom, the controller is Twitter, Inc, United States of America.
Website: 
https://www.twitter.com
More information & privacy: 
https://twitter.com/de/privacyhttps://help.twitter.com/de/rules-and-policies and https://help.twitter.com/de/safety-and-security Warranty: EU Standard Contractual Clauses. For a copy of the EU Standard Contractual Clauses, please contact us.

YouTube
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: 
https://www.youtube.com
Further information & data protection: 
https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google.
For more information on this and Google's responsibility, please see the following link: 
https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Social media content/plugins
We use social media content/plugins from external services in order to be able to display content and functions of the external services to you and thus to optimize our online offer and our marketing.
If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the optimization of our online offer and our marketing.
In the context of the use of external services, profiling (for purposes of advertising, personalized information, etc.) may also occur. Profiling may also take place across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the more detailed information about the services we use at the end of this passage and the links provided there.

YouTube
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: 
https://www.youtube.com
Further information & data protection: 
https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. For more information on this and Google's responsibility, please see the following link: 
https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Fonts & Scripts
We use fonts and scripts from external services to be able to display our online offer to you and to always ensure up-to-date fonts and scripts.
If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 (1) lit. f DS-GVO. Our legitimate interest here is the proper display of our online offer and ensuring up-to-date fonts and scripts.
Profiling (for purposes of advertising, personalized information, etc.) may also occur in the context of the use of external services. Profiling may also occur across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

Google Fonts
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: 
https://fonts.google.com/
Further information & data protection: 
https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. For more information on this and Google's responsibility, please see the following link: 
https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Captchas
We use captchas to protect our online offer from misuse, machine and/or automated entries (for example in forms) and to prevent any misuse.
If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 (1) lit. f DS-GVO. Our legitimate interest here is the protection of our online offer and the prevention of misuse.
We use external services to provide the captchas. This may also involve profiling. Profiling can also take place across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

Google reCAPTCHA
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: 
https://www.google.com/recaptcha/
Further information & data protection: 
https://policies.google.com/?hl=en
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. For more information on this and Google's responsibility, please see the following link: https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Comments
If you leave comments via the functions provided for this purpose (on blog entries, products, etc.), we process your personal data in order to be able to display your comments and prevent any misuse.
If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 (1) lit. f DS-GVO. Our legitimate interest here is the proper display of your comments and the prevention of misuse.