Thank you for your interest in our website. The protection of your personal data is very important to us. Below you will find information on how we handle the data collected through your use of our website. Your data will be processed in accordance with the statutory data protection regulations.
The responsible body for data processing on this website is:
DICTUM GmbH
Gottlieb-Daimler-Str. 3
94447 Plattling
Germany
Phone: +49 (0)9931 4058-100
Email: privacy@dictum.com
Proliance GmbH / www.datenschutzexperte.de
Data Protection Officer
Leopoldstr. 21
80802 Munich
datenschutzbeauftragter@datenschutzexperte.de
When contacting the Data Protection Officer, please state the company to which your inquiry relates. Please refrain from attaching sensitive information, such as a copy of your ID, to your inquiry.
Our privacy policy is intended to be simple and understandable for everyone. This privacy policy generally uses the official terms of the General Data Protection Regulation (GDPR). The official definitions are explained in Article 4 of the GDPR.
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the browser's address bar beginning with "https://" and the lock symbol in your browser's address bar. When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Encrypted payment transactions on this website
If, after concluding a paid contract, you are required to provide us with your payment details (e.g., account number for direct debit authorization), this data is required for payment processing. Payment transactions using common payment methods (Visa/MasterCard/American Express, direct debit) are carried out exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser begins with "https://" and by the lock symbol in your browser line. With encrypted communication, your payment details that you transmit to us cannot be read by third parties.
By using our website, information (e.g., IP address) may be accessed or stored (e.g., cookies) on your device. This access or storage may involve further processing of personal data within the meaning of the GDPR.
In cases where such access to information or such storage of information is absolutely necessary for the technically error-free provision of our services, this is done on the basis of Section 25 Paragraph 1 Sentence 1, Paragraph 2 No. 2 TDDDG.
In cases where such a process serves other purposes (e.g., tailoring our website to meet your needs), this will only take place on the basis of Section 25 (1) of the Telemedia Act (TDDDG) with your consent in accordance with Article 6 (1) (a) of the GDPR. This consent can be revoked at any time for the future. The provisions of the GDPR and the Federal Data Protection Act (BDSG) apply to the processing of your personal data.
Further information on the processing of your personal data and the relevant legal bases in this context can be found in the following sections on the specific processing activities on our website.
This website is hosted by an external service provider (hoster). This website is hosted in Germany. Personal data collected on this website is stored on the hoster's servers. This may include, in particular, IP addresses, contact requests, meta and communication data, website access, and other data generated via a website.
We collect the listed data to ensure a smooth connection to the website and the technically error-free provision of our services. The processing of this data is absolutely necessary to make the website available to you. The legal basis for processing this data is our legitimate interest in the correct presentation and functionality of our website in accordance with Art. 6 (1) (f) GDPR.
We have concluded a data processing agreement with the provider in accordance with the requirements of Art. 28 GDPR, in which we oblige the provider to protect our customers' data and not to pass it on to third parties.
When you visit our website, it is technically necessary for data to be transmitted to our web server via your internet browser. The following data is recorded during an ongoing connection for communication between your internet browser and our web server:
We collect the listed data to ensure a smooth connection to the website and the technically error-free provision of our services. Processing this data is absolutely necessary to make the website available to you. The log files are used to evaluate system security and stability, as well as for administrative purposes. The legal basis for processing this data is our legitimate interest in the protection and functionality of our website in accordance with Art. 6 (1) (f) GDPR.
For technical security reasons, particularly to prevent attempted attacks on our web server, we store this data temporarily. After 30 days at the latest, the data is anonymized by shortening the IP address at the domain level, making it impossible to establish a connection to the individual user.
Our website uses so-called "cookies." Cookies are small text files that are stored on your device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted after your visit. Permanent cookies remain stored on your device until you delete them yourself or your web browser automatically deletes them.
Cookies serve various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or language settings). Other cookies are used to evaluate user behavior or display advertising.
The processing of data through the use of strictly necessary cookies is based on a legitimate interest pursuant to Art. 6 (1) (f) GDPR in the technically error-free provision of our services. For details on the processing purposes and legitimate interests, please refer to the explanations on the specific data processing.
The processing of personal data through the use of other cookies is based on consent in accordance with Art. 6 (1) (a) GDPR. This consent can be revoked at any time for the future. If such cookies are used for analysis and optimization purposes, we will inform you separately within the framework of this privacy policy and obtain your consent in accordance with Art. 6 (1) (a) GDPR.
You can set your browser so that you
Cookie settings can be managed for each browser using the following links:
You can also manage cookies from many companies and features used for advertising individually. You can do so using the relevant user tools available at https://www.aboutads.info/choices/ or http://www.youronlinechoices.com/uk/your-ad-choices.
Most browsers also offer a so-called "do-not-track" feature. When enabled, this feature informs advertising networks, websites, and applications that you do not want to be tracked for behavioral advertising and similar purposes.
Information and instructions on how to edit this function can be found under the following links, depending on your browser provider:
Additionally, you can prevent the loading of so-called scripts by default. "NoScript" allows JavaScript, Java, and other plug-ins to run only on trusted domains of your choice. Information and instructions on how to configure this feature are available from your browser provider (e.g., for Mozilla Firefox, see: https://addons.mozilla.org/de/firefox/addon/noscript/ ).
Please note that deactivating cookies may limit the functionality of our website.
You can revoke or change your cookie settings at any time. To do so, access the cookie settings again via this link: https://www.dictum.com/cookie/offcanvas .
In addition to cookies, we also use what is known as local storage technology (also called “local data” and “local memory”). This technology stores data locally in your browser’s cache, which remains available and can be read even after you close the browser window or exit the program – unless you delete the cache. Local storage saves your preferences when using our websites on your computer and uses them. The data from local storage is used, for example, to give you recommendations based on your anonymous use or to provide you with a watchlist. Third parties cannot access the data stored in local storage, nor is it passed on to third parties or used for advertising purposes. We use this technology in our legitimate interest in being able to offer you a fully functional service on the basis of Article 6 (1) (f) GDPR.
You can manage local storage content in your browser via the "History" or "Local Data" settings, depending on the browser you use. Restricting the functions accordingly may result in functional limitations.
The following information applies equally to our two online shops, Dictum.com ( https://www.dictum.com ) and "The Gun Dog Affair" ( https://www.thegundogaffair.com ). Dictum GmbH is responsible for both websites within the meaning of the GDPR.
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing your inquiry and in the event of follow-up questions. We will not pass this data on without your consent. The processing of the data entered in the contact form is based on your consent (Art. 6 (1) (a) GDPR) and our legitimate interest in answering your request in accordance with Art. 6 (1) (f) GDPR. You can revoke this consent at any time. All you need to do is send us an informal email. The legality of the data processing operations carried out up to the time of revocation remains unaffected by the revocation.
If your contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR. The data you enter in the contact form will remain with us until you request its deletion, revoke your consent to storage, or the purpose for storing the data no longer applies (e.g., after your request has been processed). Mandatory statutory provisions—in particular, retention periods—remain unaffected.
This function is available to website visitors if a product has an uncertain delivery time and therefore cannot be ordered. Under these conditions, you have the option of being informed via email as soon as a product is available again and can therefore be ordered. For this purpose, the email address you entered will be saved with us. We will not pass this on without your consent. To send this notification, we use the so-called double opt-in procedure. This means that we will only send you a corresponding notification once you have expressly confirmed to us that you agree to receive such a message. We will then send you a confirmation email in which you will be asked to confirm that you wish to receive such a notification by clicking on a corresponding link.
By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 (1) (a) GDPR. You can revoke this consent at any time. To do so, simply send us an informal email. The legality of the data processing operations carried out up to the time of revocation remains unaffected by the revocation.
The data you enter in the "Product Available Again" form will remain with us until you request its deletion, revoke your consent to storage, or the purpose for storing the data no longer applies. Mandatory legal provisions—in particular, retention periods—remain unaffected.
You can register on our website to use additional functions on the site. We will only use the data you enter for the purpose of using the respective offer or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject your registration. For important changes, such as those relating to the scope of services or technically necessary changes, we will use the email address you provided during registration to inform you. The data you entered during registration is processed on the basis of your consent (Art. 6 (1) (a) GDPR). You can revoke your consent at any time. All you need to do is send us an informal email. The legality of any data processing that has already taken place remains unaffected by the revocation. The data collected during registration will be stored by us for as long as you are registered on our website and will then be deleted. Statutory retention periods remain unaffected.
We collect, process, and use personal data only to the extent necessary to establish, define, or modify the legal relationship (master data). This is done on the basis of Art. 6 (1) (b) GDPR, which permits the processing of personal data to fulfill a contract or to initiate a contract. We collect, process, and use personal data about the use of our website (usage data) only to the extent necessary to enable the user to use the service or to bill them. In addition, your data will be used for advertising and market research purposes by the responsible body. The collected customer data will be deleted after the end of the business relationship or in accordance with the statutory retention periods.
To process your order, we work with the following service providers who support us in whole or in part in the execution of concluded contracts. Certain personal data will be transmitted to these service providers in accordance with the following information. The personal data we collect will be passed on to the transport company commissioned with the delivery as part of the contract processing, insofar as this is necessary for the delivery of the goods. We will pass on your payment details to the commissioned credit institution as part of the payment processing, insofar as this is necessary for the payment processing. If payment service providers are used, we will inform you explicitly about this below. The legal basis for the transfer of data is Art. 6 (1) (b) GDPR for the purpose of fulfilling the contract.
To fulfill our contractual obligations to our customers, we work with external shipping partners. We will share your name, delivery address, and, if necessary for delivery, your telephone number with a shipping partner selected by us exclusively for the purpose of delivering the goods in accordance with Art. 6 (1) (b) GDPR.
Order processing is handled by the service provider "magnalister" (RedGecko GmbH, Paul-Lincke-Ufer 20-22, 10999 Berlin). Your name, address, and any other personal data will be passed on to magnalister in accordance with Art. 6 (1) (b) GDPR exclusively for the purpose of processing your online order. Your data will only be passed on to the extent necessary to process your order. Details regarding magnalister's data protection policy and its privacy policy can be found on the magnalister website at https://www.magnalister.com/de/datenschutz.
After participating in one of our workshops, you will receive an access code to our online course survey. There, you can voluntarily provide your opinion about the course you attended. We store the data you enter for the purpose of continuously improving our offerings and course structures. The data is processed based on your consent (Art. 6 (1) (a) GDPR). You can revoke this consent at any time. An informal email to us is sufficient. The legality of the data processing operations carried out up to the time of revocation remains unaffected by the revocation.
As part of our offering, we work with manufacturers who offer extended warranties subject to device registration. Information on extended warranties can be found on the respective product page at www.dictum.com . If products from these manufacturers are purchased, we will register the devices with the manufacturer on behalf of the customer free of charge as part of the purchase contract. Upon conclusion of a purchase contract, the customer data stored with us (name, address, email address, as provided to us by the customer) will be passed on to the manufacturer for the purpose of device registration. The legal basis for the collection and processing of your personal data in this context is Art. 6 (1) (b) GDPR within the scope of contract fulfillment and implementation.
Google Analytics 4
This website uses Google Analytics 4, a service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), which can be used to analyze website usage.
When using Google Analytics 4, so-called "cookies" are used. The information collected by cookies about your use of the website (including the IP address transmitted by your device, truncated by the last digits; see below) is generally transmitted to a Google server, where it is stored and processed. This may also involve transmitting information to the servers of Google LLC, located in the USA, for further processing.
When using Google Analytics 4, the IP address transmitted by your device when you use the website is automatically and always collected and processed in an abbreviated form, so that the information collected cannot be directly linked to a person. This automatic anonymization occurs by Google abbreviating the last digits of the IP address transmitted by your device within member states of the European Union (EU) or other contracting states to the Agreement on the European Economic Area (EEA).
We use Google Analytics for marketing purposes. On our behalf, Google uses this and other information to evaluate your use of the website, to compile reports on your website activities and usage behavior, and to provide us with other services related to your website and internet usage. The shortened IP address transmitted by your device as part of Google Analytics 4 will not be merged with other Google data. The data collected as part of the use of Google Analytics 4 will be retained for 14 months and then deleted.
Google Analytics 4 also uses a special feature called "demographic features" to compile statistics about the age, gender, and interests of website users based on an analysis of interest-based advertising and with the aid of third-party information. This makes it possible to identify and differentiate website user groups for the purpose of targeting marketing measures that are optimized for specific groups. However, data collected via "demographic features" cannot be assigned to a specific person, including you personally. This data collected via the "demographic features" function is retained for 14 months and then deleted.
All processing described above, in particular the setting of Google Analytics cookies for storing and reading information on the device you use to access the website, will only take place if you have given us your express consent in accordance with Art. 6 (1) (a) GDPR. Without your consent, Google Analytics 4 will not be used during your use of the website.
In connection with this website, the "UserIDs" function is used as an extension of Google Analytics 4. By assigning individual UserIDs, we can have Google create cross-device reports (so-called "cross-device tracking"). This means that if you give your consent to the use of Google Analytics 4 in accordance with Art. 6 (1) (a) GDPR, your usage behavior can also be analyzed across devices if you have set up a personal account by registering on this website and are logged into your personal account on different devices using your corresponding login data. The data collected in this way shows, among other things, the device on which you first clicked on an ad and the device on which the corresponding conversion took place.
We have concluded a so-called order processing agreement with Google for our use of Google Analytics 4, which obliges Google to protect the data of our website users and not to pass it on to third parties.
Since Google may transfer personal data to affiliated companies and subcontractors in countries outside the EU and EEA, additional safeguards are required to ensure the level of data protection required by the GDPR. For the USA, the EU Commission has issued an adequacy decision pursuant to Art. 45 (1) GDPR regarding companies certified under the EU-US Data Privacy Framework. Google LLC is certified under the EU-US Data Privacy Framework and is therefore committed to adhering to appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search
For potential transfers to other third countries outside the EU and the EEA for which no adequacy decision has been made by the EU Commission, we have also agreed standard data protection clauses with the provider in accordance with Art. 46 (2) (c) GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe.
Further legal information on Google Analytics 4, including a copy of the aforementioned standard contractual clauses, can be found at the following link: https://policies.google.com/privacy
Details on the processing initiated by Google Analytics 4 and how Google handles data from websites can be found here: https://policies.google.com/technologies/partner-sites
Google Ads Remarketing
Our website uses Google Ads Remarketing, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
If you have given us your consent, this function enables us to link the advertising target groups created with Google Ads Remarketing with the cross-device functions of Google Ads and Google Marketing Platform. The legal basis is your consent in accordance with Art. 6 (1) (a) GDPR and Section 25 (1) TDDDG. This allows interest-based, personalized advertising messages that have been tailored to you based on your previous usage and surfing behavior on one device (e.g., mobile phone) to also be displayed on another of your devices (e.g., tablet or PC).
If you have given your consent, Google will link your web and app browsing history to your Google Account. This allows the same personalized advertising messages to be displayed on every device on which you log in with your Google Account.
To support this feature, Google Analytics collects user IDs that are temporarily linked to our Google Analytics data to define and create audiences for cross-device ad delivery.
You can permanently opt out of cross-device remarketing/targeting by deactivating personalized advertising in your Google Account; to do so, follow this link: https://adssettings.google.com/ .
Since Google may transfer personal data to affiliated companies and subcontractors in countries outside the EU and the EEA, additional safeguards are required to ensure the GDPR level of data protection. For the USA, the EU Commission has issued an adequacy decision pursuant to Art. 45 (1) GDPR regarding companies certified under the EU-US Data Privacy Framework. Google LLC is certified under the EU-US Data Privacy Framework and is therefore committed to adhering to appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search .
For potential transfers to other third countries outside the EU and the EEA for which no adequacy decision has been made by the EU Commission, we have also agreed standard data protection clauses with the provider in accordance with Art. 46 (2) (c) GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe.
Further information and the data protection provisions can be found in Google's privacy policy at: https://www.google.com/policies/technologies/ads/ .
Google Tag Manager
This website uses Google Tag Manager from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). This service allows website tags to be managed via an interface. Google Tag Manager only implements tags. This means: no cookies are used and only the user's IP address is transmitted to Google to establish the connection. Google Tag Manager triggers other tags, which in turn may collect data. However, Google Tag Manager does not access this data. If deactivation has been carried out at the domain or cookie level, it remains in effect for all tracking tags implemented with Google Tag Manager.
We use Google Tag Manager based on your consent in accordance with Art. 6 (1) (a) GDPR.
Since Google may transfer personal data to affiliated companies and subcontractors in countries outside the EU and EEA, additional safeguards are required to ensure the level of data protection required by the GDPR. For the USA, the EU Commission has issued an adequacy decision pursuant to Art. 45 (1) GDPR regarding companies certified under the EU-US Data Privacy Framework. Google LLC is certified under the EU-US Data Privacy Framework and is therefore committed to adhering to appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search
For potential transfers to other third countries outside the EU and the EEA for which no adequacy decision has been made by the EU Commission, we have also agreed standard data protection clauses with the provider in accordance with Art. 46 (2) (c) GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe.
etracker
We use the services of etracker GmbH (Erste Brunnenstraße 1, 20459 Hamburg) on this website to analyze usage data.
If we use analysis and optimization cookies, we will obtain your explicit consent in advance in accordance with Art. 6 (1) (a) GDPR. If you give us your consent, cookies will be used that enable a statistical reach analysis of this website, a measurement of the success of our online marketing measures, and test procedures, for example, to test and optimize different versions of our online offering or its components.
In cookieless mode, we do not set any cookies when using etracker. In cookieless mode, data processing is based on our legitimate interest in accordance with Art. 6 (1) (f) GDPR. Our legitimate interest is the optimization of our online offering and our website. Because the privacy of our visitors is important to us, data that could potentially be linked to an individual, such as IP addresses, login or device identifiers, is anonymized or pseudonymized as soon as possible. It is not used for any other purpose, combined with other data, or shared with third parties.
We have concluded a data processing agreement with etracker GmbH in accordance with Art. 28 GDPR. The data generated with etracker is processed exclusively in Germany.
You can object to the data processing described above at any time by clicking the slider. This objection has no adverse consequences. If no slider is displayed, data collection has already been prevented by other blocking measures.
Further information on data protection at etracker can be found here: Data protection by etracker - etracker
NeoCommerce
We have integrated the guided selling service Neocom from Neo Commerce GmbH (hereinafter "Neocom"), Max-Bill-Str. 8, 80807 Munich, into our website to provide you with digital, interactive product advice. When you start this product advice, you can find your desired product in a quiz-like, guided process and receive a product recommendation at the end, which you can then have sent to you by email if you wish.
During the consultation, Neocom collects the following browser HTTP information: browser type and version, IP address, and browser software language. In addition, a session ID is generated and temporarily stored on your device during the browser session in order to provide the consultation. This enables the correct and complete display and execution of digital product consultations, similar to a shopping cart function. The legal basis is our legitimate interest pursuant to Art. 6 (1) (f) GDPR (browser query) and Art. 6 (1) (a) GDPR (consent regarding session ID).
Furthermore, a persistent Neocom session ID is stored. This is a purchase tracking tool that allows us to track whether a purchase has been made from us following the product consultation – even across multiple browser sessions. However, this only occurs with your prior consent. The legal basis is Art. 6 (1) (a) GDPR. The session ID is deleted after 365 days at the latest.
If you wish to receive product recommendations by email at your request, we will ask for your email address. Neocom will only use this address to send you the product recommendation you requested. However, this only happens with your prior consent. The legal basis is Art. 6 (1) (a) GDPR. We use the so-called “double opt-in procedure” for registration. After you have provided your email address, you will receive an email from us with a confirmation link to confirm your request to receive the product recommendation. If you click on this confirmation link, your email address will be saved for the purpose of sending the email. If you do not click on the confirmation link within 24 hours, your registration data will be blocked. You have the option of revoking your consent to the processing of personal data at any time in accordance with Art. 6 (1) (a) GDPR.
Neocom uses additional services for product advice. Details about these can be found here: Neocom Sub Processors (Public) - Google Drive
Retargeting
This website uses retargeting technology from releva GmbH, Feilnerstr. 10, 10969 Berlin (www.releva.nz). This enables us to target visitors to our website with personalized, interest-based advertising. Advertising is displayed based on a cookie-based analysis of previous usage behavior, but no personal data is stored. When retargeting technology is used, a cookie is stored on your computer or mobile device in order to collect pseudonymized data about your interests as part of a pseudonymized user profile and thus tailor the advertising to the stored information. These cookies are small text files that are stored on your computer or mobile device. This means you will see advertising that is highly likely to match your product and information interests. If the information collected is personal, processing is carried out in accordance with Art. 6 (1) (f) GDPR on the basis of our legitimate interest in displaying personalized advertising and market research. To the extent legally required, we have obtained your consent to the processing of your data as described above in accordance with Art. 6 (1) (a) GDPR. You can revoke your consent at any time with future effect. To exercise your right of revocation, please follow the options for objecting as described in the "Cookies" section. The information generated by the cookie in the pseudonymous user profile is not used to personally identify the visitor to this website and is not merged with personal data about the bearer of the pseudonym. Further information and the data protection provisions regarding advertising and releva GmbH can be found at https://releva.nz/datenschutz.
hurrah.com Ads Defender Click Fraud technology
On our website we use the Ads Defender Click Fraud service from Hurra Communications GmbH, Wollgrasweg 27, 70599 Stuttgart, Germany. This service is used to analyze and prevent click fraud on our displayed advertisements. Click fraud occurs when clicks on advertisements are generated by automatic tools or when multiple clicks on advertisements are presumably not due to genuine user interest. The legal basis for the use of this service is Art. 6 (1) (f) GDPR. We have a legitimate interest in monitoring and preventing fraudulent activities through click fraud and in ensuring the proper functioning of our systems. When clicking on advertisements, the following personal data is collected and stored by the service during analysis: IP address, information about the browser used, information about the operating system, location information, referrer URL, other online identifiers such as click and cookie IDs, duration of use and time of access, and information about interactions with advertising material and our website. If the service detects suspicious behavior and there is a suspicion of click fraud, these IP addresses may be transmitted to Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). Google services may transfer data to the USA. Google is certified under the EU-US Privacy Shield Framework (“EU-US Privacy Shield”), see: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active . Further information on data protection at hurra.com can be found at: https://privacy.hurra.com
Hotjar
Our website uses the web analysis service Hotjar of Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe (“Hotjar”).
With the help of Hotjar's technology, we gain a better understanding of our users' experiences (e.g. how much time users spend on which pages, which links they click, etc.). This helps us tailor our offerings to our users' feedback. Hotjar uses cookies and other technologies to collect data about the behavior of our users and their devices, in particular the device's IP address (only recorded and stored in an anonymized form while you use the website), screen size, device type (unique device identifiers), information about the browser used, location (country only), and preferred language for displaying our website. Hotjar stores this information on our behalf in a pseudonymized user profile.
When using this tool, we pay particular attention to protecting your personal data. This means we can only track which buttons are clicked, mouse movement, scrolling distance, device screen size, device type and browser information, geographical location (country only), and preferred language to display our website. Areas of the website where personal data from you or third parties is displayed are automatically hidden by Hotjar and are therefore never traceable. The use of Hotjar and the associated processing of personal data is based on your consent in accordance with Art. 6 (1) (a) GDPR.
Hotjar generally stores customer data in the European Union. However, personal data may also be transferred to third countries outside the EU and the EEA. In these cases, additional protective measures are required to ensure the level of data protection in accordance with the GDPR. To ensure this, we have agreed to standard data protection clauses with the provider in accordance with Art. 46 (2) (c) GDPR. These oblige the recipient in the third country to process the data in accordance with the level of protection in the EU.
Hotjar offers every user the option of preventing the use of the Hotjar tool by setting a "Do Not Track" header, so that no data about visits to the respective website is recorded. This is a setting supported by all current browsers. To do this, your browser sends a request to Hotjar with the instruction to deactivate tracking of the respective user. If you use our websites with different browsers/computers, you must set up the "Do Not Track" header separately for each of these browsers/computers. You can prevent the use of Hotjar by going to the opt-out page https://www.hotjar.com/legal/compliance/opt-out and clicking "Deactivate Hotjar".
Further information about Hotjar Ltd. and the Hotjar tool can be found at: https://www.hotjar.com . Hotjar Ltd.'s privacy policy can be found at: https://www.hotjar.com/privacy
VWO – Digital Experience Optimization
This website uses the VWO web analytics service from Wingify. Wingify Software Pvt. Ltd. is an Indian company with headquarters in India (KLJ TOWER, 1104, North, Netaji Subhash Place, Pitam Pura, Delhi, 110034) and a German branch in Hamburg (Wingify Software Pvt. Ltd., Heidenkampsweg 58, Hamburg, 20097, Germany, Email: support@vwo.com , Web: https://vwo.com , Phone: +1 415-349-0105).
VWO allows you to track movements on websites where VWO is used (so-called heatmaps). This allows you to see, for example, how far users scroll, which buttons are clicked and how often, and how much time users spend on which pages.
VWO also makes it possible to obtain feedback directly from website users using a survey tool.
We use VWO technology to better understand our users' needs and optimize the offering and experience on our website. In this context, we process, among other things, the following data:
Of course, we pay particular attention to the protection of your personal data when using this tool. VWO analyzes the use of our website completely anonymously; all personal data is automatically hidden and not processed. Areas of the website in which personal data from you or third parties is displayed are automatically hidden by VWO and are therefore not traceable at any time. To rule out direct personal reference, IP addresses are only stored and processed anonymously. For this purpose, VWO uses cookies and other technologies to collect data about user behavior and their end devices. VWO stores this information on our behalf in a pseudonymized user profile. VWO is contractually prohibited from passing on the data collected on our behalf. The legal basis for the processing of your personal data is Art. 6 (1) (a) GDPR (consent).
You can prevent VWO from processing your personal data at any time by not giving us your consent to use “behavioral cookies” on this website or by withdrawing your consent with effect for the future.
Alternatively, you can generally prevent VWO from collecting your data by deactivating the tool via the VWO opt-out page: https://vwo.com/opt-out/ Further information about Wingify Software Pvt. Ltd. and the VWO tool can be found at: https://vwo.com/
The privacy policy of Wingify Software Pvt. Ltd. can be found at: https://vwo.com/privacy-policy/
Microsoft Clarity – Free Heatmaps and Session Recordings
On our website we use Microsoft Clarity, a service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.
"Microsoft Clarity" is a Microsoft process that uses a pseudonymous user ID to conduct analysis, such as evaluating performance data for specific configurations and mouse movements on the website. The analyzed data should be used to provide you with personalized and interest-based advertising based on the created user profile, as well as to measure conversions and reach. Clarity's settings are configured so that Microsoft already collects data in pseudonymized form via so-called IP masking. Data processing is based on your consent in accordance with Art. 6 (1) (a) GDPR. The following data is processed in pseudonymized form:
Since Microsoft may transfer personal data to affiliated companies and subcontractors in countries outside the EU and EEA, additional protective mechanisms are required to ensure the level of data protection required by the GDPR. For the USA, the EU Commission has issued an adequacy decision pursuant to Art. 45 (1) GDPR for companies certified under the EU-US Data Privacy Framework. Microsoft Corporation is certified under the EU-US Data Privacy Framework and is therefore committed to adhering to appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search . For potential transfers to other third countries outside the EU and EEA for which there is no adequacy decision from the EU Commission, we have also agreed standard data protection clauses with the provider pursuant to Art. 46 (2) (c) GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe. For more information about data protection and the cookies used by Microsoft, please visit the Microsoft website at https://privacy.microsoft.com/de-de/privacystatement
Use of the Sovido plugin and the Sovido platform
(1) We use a plug-in and a connection to the video platform Sovido to display audiovisual content. Sovido is a platform for the production, processing, and distribution of audiovisual content, as well as related services, and is provided to us by Sovido GmbH, Vor dem Bardowicker Tore 6a, 21339 Lüneburg, Germany.
(2) Sovido GmbH collects the following data on our behalf for the use of the audiovisual content offered:
(3) As part of this process, we receive information about personal data from Sovido GmbH, such as your IP address (in pseudonymized form) and other non-personal data that is necessary for statistical recording.
YouTube
On our website, we embed videos from "YouTube," a social media platform of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as "Google"). The legal basis for the processing of your personal data in this context is your consent pursuant to Art. 6 (1) (a) GDPR.
If you start playing embedded YouTube videos with your consent, a server call is made, usually to a Google server in the USA. This transmits to the server which page you have accessed and the IP address of the browser on the visitor's device, which is then transmitted to Google and stored by Google.
In addition, with your consent, the provider "YouTube" uses cookies to collect information about user behavior. According to information from "YouTube", these are used, among other things, to record video statistics, improve user-friendliness and prevent abusive activities. If you are logged in to Google, your data may also be assigned to your account when you click on a video. If you do not want to be assigned to your YouTube profile, you must log out before activating the button. Google stores this data as user profiles and uses them for the purposes of advertising, market research and/or the needs-based design of its websites. Such an evaluation is carried out in particular (also for users who are not logged in) to display needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles. Please contact Google directly in this regard.
Since Google may transfer personal data to affiliated companies and subcontractors in countries outside the EU and EEA, additional safeguards are required to ensure the level of data protection required by the GDPR. For the USA, the EU Commission has issued an adequacy decision pursuant to Art. 45 (1) GDPR regarding companies certified under the EU-US Data Privacy Framework. Google LLC is certified under the EU-US Data Privacy Framework and is therefore committed to adhering to appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search
For potential transfers to other third countries outside the EU and the EEA for which no adequacy decision has been made by the EU Commission, we have also agreed standard data protection clauses with the provider in accordance with Art. 46 (2) (c) GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe.
Further information on data protection and data usage by Google can be found on the following Google website: https://policies.google.com/privacy?hl=de&gl=de
Sendinblue
To send our newsletter, we use the Brevo service of Sendinblue GmbH (Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin).
If you would like to receive the newsletter offered on the website with regular information about our offers and products, we require your email address as mandatory information.
Additional data may be provided in order to address you personally in the newsletter and/or to identify you if you wish to exercise your rights as a data subject.
We use the so-called double opt-in procedure to send our newsletter. This means that we will only send you our newsletter by email after you have expressly confirmed that you consent to receiving newsletters. As a first step, you will receive an email with a link that you can use to confirm that you, as the owner of the corresponding email address, wish to receive future newsletters. By confirming this, you give us your consent in accordance with Art. 6 (1) (a) GDPR to use your personal data for the purpose of sending the desired newsletter.
When you register for the newsletter, we save, in addition to the email address required for sending, the IP address you used to register for the newsletter as well as the date and time of registration and confirmation in order to be able to trace any possible misuse at a later date.
You can unsubscribe from the newsletter at any time using the link included in each newsletter or by sending an email to the person responsible named above. After unsubscribing, your email address will be immediately deleted from our newsletter distribution list unless you have expressly consented to the continued use of the collected data or the continued processing is otherwise permitted by law.
Our e-mail newsletters are sent via a technical service provider to whom we pass on the data you provided when you registered for the newsletter.
The service provider uses this information to send and statistically evaluate the newsletter on our behalf. For evaluation purposes, the emails sent contain so-called web beacons or tracking pixels, which are single-pixel image files stored on our website. This makes it possible to determine whether a newsletter message has been opened and which links have been clicked. With the help of so-called conversion tracking, it can also be analyzed whether a predefined action (e.g. purchase of a product on our website) has taken place after clicking on the link in the newsletter. Technical information is also recorded (e.g. time of retrieval, IP address, browser type and operating system). The data is collected exclusively in pseudonymous form and is not linked to your other personal data; direct personal reference is excluded. This data is used exclusively for the statistical analysis of newsletter campaigns. The results of this analysis can be used to better tailor future newsletters to the interests of the recipients. If you wish to object to data analysis for statistical evaluation purposes, you must unsubscribe from the newsletter.
Email service provider:
Service provider: Brevo/Sendinblue GmbH
Address: Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin
Privacy policy: https://de.sendinblue.com/legal/privacypolicy/
Advertising by mail
Based on our legitimate interest in personalized direct advertising, we reserve the right to store your first and last name, postal address, and—if we have received this additional information from you as part of the contractual relationship—your title, academic degree, year of birth, and professional, industry, or business name in accordance with Art. 6 (1) (f) GDPR, and to use this information to send you interesting offers and information about our products by post. You can object to the storage and use of your data for this purpose at any time by sending a corresponding message to the controller (email address).
Catalog mailing
Based on our legitimate interest in personalized direct advertising and information about our product range, we reserve the right to store your personal data (first and last name, postal address, and—if we have received this additional information from you as part of the contractual relationship—your title, academic degree, year of birth, and professional, industry, or business name) in accordance with Art. 6 (1) (f) GDPR and to use it for the regular mailing of product catalogs. You can object to the storage and use of your data for this purpose at any time by sending a corresponding message to the controller (email address).
Meta Pixel
We use “Meta Pixel” on our website, a service provided by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour Dublin 2, Ireland (hereinafter referred to as: “Meta/Facebook”).
If you have given us your consent in accordance with Art. 6 (1) (a) GDPR, we use Meta Pixel for marketing and optimization purposes, in particular to place relevant and interesting ads on Facebook and thus to improve our offering, make it more interesting for you as a user and avoid annoying ads.
Meta Pixel enables Meta to show our Facebook ads, so-called “Facebook Ads,” only to Facebook users who have visited our website, particularly those who have shown interest in our online offering. In this case, Meta Pixel also makes it possible to check whether a user was redirected to our website after clicking on our Facebook ads. Meta Pixel uses, among other things, cookies, i.e. small text files that are stored locally in the cache of your web browser on your device. If you are logged into Facebook with your user account, your visit to our online offering will be recorded in your user account. The data collected about you is anonymous to us and therefore does not allow us to draw any conclusions about the identity of the user. However, Facebook can link this data to your user account there. If you have a user account with Facebook and are registered, Facebook can assign the visit to your user account.
Since Meta may transfer personal data to affiliated companies and subcontractors in countries outside the EU and the EEA, additional safeguards are required to ensure the GDPR level of data protection. For the USA, the EU Commission has issued an adequacy decision pursuant to Art. 45 (1) GDPR regarding companies certified under the EU-US Data Privacy Framework. Meta Platforms, Inc. is certified under the EU-US Data Privacy Framework and is therefore committed to adhering to appropriate data protection standards, which can be viewed at the following link: https://www.dataprivacyframework.gov/s/participant-search .
For potential transfers to other third countries outside the EU and the EEA for which no adequacy decision has been made by the EU Commission, we have also agreed standard data protection clauses with the provider in accordance with Art. 46 (2) (c) GDPR. These oblige the recipient of the data in the third country to process the data in accordance with the level of protection in Europe.
Further information about data protection from the third-party provider can be found on the following Facebook website: https://www.facebook.com/about/privacy . Information about Meta Pixel can be found on the following Facebook website: https://www.facebook.com/business/help/651294705016616 .
You can make the settings regarding which types of advertisements are displayed to you within Facebook on the following Facebook website: https://www.facebook.com/settings?tab=ads .
Please note that this setting will be deleted if you delete your cookies. You can also deactivate cookies used for audience measurement and advertising purposes via the following websites: http://optout.networkadvertising.org/ , http://www.aboutads.info/choices , http://www.youronlinechoices.com/uk/your-ad-choices/
Please note that this setting will also be deleted if you delete your cookies.
Pingdom
This website uses the monitoring service Pingdom, which is operated by the Swedish company Pingdom AB, Kopparbergsvägen 8, 722 13, Västerås, Sweden. Pingdom uses cookies, which are small text files that are stored locally in the cache of the website visitor's browser. These cookies are used to recognize the browser and thus enable an analysis of your access, as well as the loading behavior ("performance") and the availability of our website in order to improve the loading behavior and the presentation of the content on the website. If personal data is also processed by the cookies, this is done in accordance with Art. 6 (1) (a) GDPR on the basis of your consent. To generally deactivate the use of cookies on your computer, you can set your internet browser so that no more cookies can be stored on your computer in the future or cookies that have already been stored are deleted. However, deactivating all cookies may mean that some functions on our website can no longer be carried out. Pingdom's privacy policy can be found at https://www.pingdom.com/legal/privacy-policy/ .
Data processing in the context of competitions on social media platforms
We process your personal data for the proper conduct and processing of competitions and in particular for sending the prize. To conduct the competition, the profile name used on the relevant platform and, if available, the first and last name of the respective participant are collected and stored. To determine the minimum age for participation, entering the date of birth may be necessary. To send the prize, we also collect the last name, first name and address of the winner(s) and pass this data on to a shipping company commissioned by us. Your data will not be passed on to third parties beyond this. The legal basis for this processing of your personal data is Art. 6 (1) (b) GDPR (implementation of pre-contractual measures and fulfillment of a contract). If participation in the competition is made dependent on consent to receive our newsletter, we will also collect your email address for the purpose of sending the newsletter (to avoid repetition, please refer to the section "Advertising/Newsletter" at this point).
PayPal
When paying via PayPal, credit card via PayPal, direct debit via PayPal or – if offered – "purchase on account" or "payment by installments" via PayPal, we will pass your payment data on to PayPal (Europe) Sarl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal") as part of the payment processing. This transfer takes place in accordance with Art. 6 (1) (b) GDPR and only to the extent necessary for payment processing. PayPal reserves the right to conduct a credit check for the payment methods credit card via PayPal, direct debit via PayPal or – if offered – "purchase on account" or "payment by installments" via PayPal. For this purpose, your payment data may be passed on to credit agencies in accordance with Art. 6 (1) (f) GDPR based on PayPal's legitimate interest in determining your ability to pay. PayPal uses the result of the credit check with regard to the statistical probability of default to decide whether to provide the respective payment method. The credit report may contain probability values (so-called score values). To the extent that score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. The calculation of the score values includes, but is not limited to, address data. Further information on data protection, including information on the credit agencies used, can be found in PayPal's privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
. You can object to this processing of your data at any time by sending a message to PayPal. However, PayPal may still be entitled to process your personal data if this is necessary for contractual payment processing.
ConCardis
On our website, we offer, among other options, payment by credit card. The provider of this payment service is Concardis GmbH, Helfmann-Park 7, 65760 Eschborn (hereinafter "Concardis"), to whom we pass on the information you provide during the ordering process, along with information about your order, in accordance with Art. 6 (1) (b) GDPR. Your data will be passed on exclusively for the purpose of processing payments with the payment service provider ConCardis and only to the extent necessary for this purpose. You can find further information about ConCardis's privacy policy at the following website address: https://www.concardis.com/datenschutz
Instant bank transfer
If you select the “SOFORT” payment method, payment processing will be carried out by the payment service provider SOFORT GmbH, Theresienhöhe 12, 80339 Munich, Germany (hereinafter “SOFORT”), to which we will pass on the information you provided during the ordering process, along with information about your order, in accordance with Art. 6 (1) (b) GDPR. Sofort GmbH is part of the Klarna Group (Klarna Bank AB (publ), Sveavägen 46, 11134 Stockholm, Sweden). Your data will be passed on exclusively for the purpose of payment processing with the payment service provider SOFORT and only to the extent that it is necessary for this purpose. You can find further information about SOFORT’s data protection provisions at the following internet address: https://www.klarna.com/sofort/datenschutz .
Payment service provider “Mollie”
We use the payment provider "Mollie" to process payments. Through Mollie, we can offer our customers various payment methods, such as bank transfer, credit card, postpay, and other payment methods.
The following personal data will be processed by “Mollie” during payment processing:
The legal basis for the processing and transfer of your personal data to “Mollie” is the fulfillment of the contract in accordance with Art. 6 (1) (b) GDPR.
Furthermore, the processing of your personal data may also be based on our legitimate interest in secure and effective payment processing with our customers. The legal basis for this is Art. 6 (1) (f) GDPR.
Social networks (Instagram, Facebook, and Pinterest) are integrated into our website merely as links to the corresponding services. After clicking on the embedded text/image link, you will be redirected to the respective provider's website. Only after redirection is user information transferred to the respective provider. Information on how your personal data is handled when using these websites can be found in the respective privacy policies of the providers you use.
We advertise currently vacant positions in a separate section on our website. Interested parties can apply by email to the contact address provided. In order to be accepted into the application process, applicants must provide us with all the personal data required for a sound and informed assessment and selection along with their application by email. The required information includes general personal information (name, address, telephone or electronic contact details) as well as performance-specific evidence of the qualifications required for a position. If necessary, health-related information may also be required; in the interests of social protection, this information must be given special consideration under labor and social law in relation to the applicant. The relevant job advertisement will specify which components an application must contain in each individual case to be considered, and in what form these components must be sent by email. After receipt of the application sent using the provided email address, the applicant data will be stored by us and used solely for the purpose of processing the application. For queries that arise during processing, we will use either the email address provided by the applicant with their application or a telephone number provided, at our discretion. The legal basis for this processing, including contacting you for queries, is generally Art. 6 (1) (b) GDPR in conjunction with Section 26 (1) BDSG, within the meaning of which completing the application process is considered the initiation of an employment contract. If special categories of personal data within the meaning of Art. 9 (1) GDPR (e.g. health data such as information on severely disabled status) are requested from applicants as part of the application process, the processing is carried out in accordance with Art. 9 (2) (b) GDPR so that we can exercise the rights arising from employment law and social security and social protection law and fulfill our obligations in this regard. Cumulatively or alternatively, the processing of special categories of data may also be based on Art. 9 (1) (h) GDPR if it is carried out for the purposes of healthcare or to assess the applicant's ability to work. If the applicant is not selected in the course of the evaluation described above, or if an applicant withdraws their application prematurely, their data submitted by email and all electronic correspondence, including the original application email, will be deleted after a corresponding notification, at the latest after six months. This period is based on our legitimate interest into answer any follow-up questions regarding the application and, if necessary, to be able to fulfill our obligations to provide evidence under the regulations on equal treatment of applicants. In the event of a successful application, the data provided will be further processed on the basis of Art. 6 (1) (b) GDPR in conjunction with Section 26 (1) BDSG for the purposes of implementing the employment relationship.
Your personal data will not be transferred to third parties, unless
We also use external service providers to handle our services. These service providers are carefully selected, commissioned in writing, and, where necessary, have concluded data processing agreements in accordance with Art. 28 GDPR. These service providers are bound by our instructions and are regularly monitored by us. These include service providers for hosting, sending emails, and maintaining and servicing our IT systems, among others. The service providers will not share this data with third parties.
In accordance with Art. 32 GDPR, we take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk, taking into account the state of the art, the implementation costs, and the nature, scope, context, and purposes of processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.
Unless a more specific storage period is specified in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally relevant reasons for storing your personal data (e.g., retention periods under tax or commercial law); in the latter case, deletion will occur once these reasons no longer apply.
Below you will find information on the rights granted to you by applicable data protection law vis-à-vis the controller with regard to the processing of your personal data:
The right to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected from us, as well as the existence of automated decision-making, including profiling, and, if applicable, meaningful information on its details.
The right to request the immediate correction of inaccurate or incomplete personal data stored by us in accordance with Art. 16 GDPR.
The right to request the deletion of your personal data stored by us in accordance with Art. 17 GDPR, unless processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.
The right to request the restriction of the processing of your personal data in accordance with Art. 18 GDPR if you contest the accuracy of the data, the processing is unlawful but you refuse to delete it and we no longer need the data, but you need it to assert, exercise or defend legal claims or you have objected to the processing in accordance with Art. 21 GDPR.
The right, in accordance with Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transmitted to another controller.
The right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR. As a rule, you can contact the supervisory authority of the federal state in which we are headquartered, or, if applicable, the supervisory authority of your usual place of residence or work.
The right to revoke consent granted pursuant to Art. 7 (3) GDPR: You have the right to revoke your consent to the processing of data at any time with future effect. In the event of revocation, we will delete the affected data immediately unless further processing can be based on a legal basis for processing without consent. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent up to the time of revocation.
If your personal data is processed by us on the basis of legitimate interests pursuant to Art. 6 (1) (f) GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, provided this is done for reasons arising from your particular situation. If the objection is directed against the processing of personal data for the purposes of direct marketing, you have a general right of objection without the need to state a particular situation.
If you wish to exercise your right of withdrawal or objection, simply send an email to info@dictum.com .
The provision of personal data for the purpose of deciding whether to conclude or fulfill a contract, or for taking pre-contractual measures, is voluntary. However, we can only make decisions within the scope of contractual measures if you provide personal data that is necessary for the conclusion or fulfillment of the contract, or for taking pre-contractual measures.
Automated decision-making or profiling pursuant to Art. 22 GDPR does not take place.
We reserve the right to adapt or update this privacy policy as necessary, in compliance with applicable data protection regulations. This allows us to adapt it to current legal requirements and to take into account changes to our services, for example, when introducing new services. The most recent version applies to your visit.
Status of this privacy policy: 18.07.2025