Privacy policy

  • 01. General information
  • 02. Contact information
  • 03. Definition of terms
  • 04. Data processing while visiting our website
  • 05. General data processing on the website for the use of our services
  • 06. Web analysis
  • 07. Cookies
  • 08. Data sharing and recipients
  • 09. Rights of the data subject
  • 10. Acknowledgement of the Privacy policy
  • 11. Modifications and version of the privacy policy
  • 01. General information

    Thank you for your interest in our website and products. The protection of your personal data is very important to us.

    In the context of the recent changes in the data protection regulation and due to our commitment to transparency, we have updated our privacy policy.

    In the following paragraphs, you will find information about how we process your data, which we collect when you use our website and our products.

    Your data are processed in accordance with the legal provisions on data protection.

    If there are links to other websites, we do not have influence, nor control over the linked content and the privacy policies of these websites.

    We recommend checking the privacy policies of the linked websites to determine if and to what extent personal data are collected, processed, used or made accessible to third parties.
  • 02. Contact information

    Data controller according to data protection law

    timeacle GmbH & Co. KG
    Wendenstraße 130
    20537 Hamburg
    +49 (0)40 368 800 300

    Data protection officer contact information

    Dominik Fünkner
    Leopoldstraße 21
    80802 Munich
  • 03. Definition of terms

    We want our privacy policy to be easily comprehensible to anyone.

    The privacy policy generally uses the official terms of the General Data Protection Regulation (GDPR).

    The official definitions of the terms are provided in Article 4 of the GDPR.
  • 04. Data processing while visiting our website

    When you access our websites, it is technologically essential that your web browser transfers data to our web server.

    Our server is located in Germany.

    If personal data are collected, you will be explicitly informed in this regard advance. Your active consent is required.

    For the communication between your web browser and our server, the following personal data are collected in an established connection:

    IP address, of which the last two blocks are anonymized using a setting in the administrator access of Matomo and Google Analytics
    The country from which access occurs
    The browser, operating system, device type, resolution, language
    The time and duration of the visit
    The website, from which access occurs
    Click and scroll behavior
    Mouse flow

    We record which timeacle website you visit. If you arrive on the timeacle page from a different website, timeacle is able to review the referrer website. The date and time of access are also recorded.

    We recognize which browser you use to access the website, as well as your operating system.

    Your IP address is anonymized before transmission It makes it impossible to identify the user or website visitor.

    The duration of your visit to our website can also be reviewed.

    User behavior (click and scroll behavior, mouse flow) is stored anonymously and analyzed aiming to optimize our website.

    We collect the listed data only to ensure the smooth establishment of a connection and to enable the comfortable use of our website for users.

    In addition, the log file serves the evaluation of the system’s security and stability, as well as administrative purposes. The above-mentioned data may also be collected to analyze your user behavior.

    For temporary data storage and log files, Article 6 (1) (f) of the GDPR serves as the legal basis.

    This does not affect your rights regarding the above-mentioned data.
  • 05. General data processing on the website for the use of our services

    On our website or the web portal, personal data may be collected and/or processed if our online services are used.

    This applies to the use of the following services:

    Registration for a customer account
    Appointment scheduling
    direct ticket booking

    Registration, appointment scheduling, and direct ticket booking as a registered customer: Registering for a user account requires your personal email address and a password. This is the minimum information required to book a ticket.

    The registered user has the option of adding his or her first name, last name, and phone number to his or her profile.

    If requested by the business customer, this data is passed on for booking. The user must actively consent to this sharing before each new booking by ticking a check box.

    If the data required to complete booking are not entered, the user is prompted to enter the data via an input mask upon booking.

    These data are stored along with the ticket and after the ticket is called up, all personal data are deleted. The data are deleted at the end of the day of the appointment.

    The legal basis for the processing of your data is your consent pursuant to Article 6 of the GDPR.

    You may modify and/or delete your data at any time using the same input mask.

    You have the option to delete your registration or account at any time.

    You can easily delete your user account by clicking on the “Delete user account” button. You will then receive a confirmation e-mail in your e-mail address.

    As a registered user, you are able to cancel appointments and provide ratings.

    When you submit your rating, only the text of your rating is displayed on the corporate customer’s profile. It is not possible to identify you, unless you enter personal data into the text body.

    Booking as a guest: You also have the option to book appointments and direct tickets with our business partners as a guest. Our corporate partners can request your first name, last name, email address, and phone number as required fields for this booking, if necessary. When you book as a guest, you are asked to enter the required data into a text box.

    Before booking, the user is required to consent to the sharing of these data by ticking a check box and is always informed in advance.

    The data are stored along with the ticket and after access (of the ticket), all personal data are deleted. The data are deleted at the end of the day of the appointment.

    The legal basis for the processing of your data is your consent pursuant to Article 6 of the GDPR.

    Online corporate customers: In order to process your order, we request in accordance with the necessary legal contractual requirements that you enter your first name, surname, address, company name, and invoice information, payment information (credit card number or bank details), email address, and password upon booking.

    In case of credit card payment, your credit card data will be transmitted in encrypted form to Stripe Inc, 510 Townsend Street, San Francisco, USA. Timeacle has no access to the unencrypted credit card information.

    The legal basis for the processing of your data is your consent pursuant to Article 6 of the GDPR.

    Data deletion occurs in accordance with the legal provisions.

    Contact initiation via email: If you send us requests via the contact form or email, we save your information from the request form or your email including the contact information you included therein for the processing of your request and in case of follow-up questions.

    We never share these data without your consent.

    The legal basis for data processing is our legitimate interest in responding to your request pursuant to Article 6 (1) (f) of the GDPR and possibly Article 6 (1) (b) of the GDPR, if your request has the aim of concluding a contract.

    Your data are always deleted in accordance with the legal provisions after your request is processed.
  • 06. Web analysis

    This website uses services from Matomo and Google Analytics to evaluate user access and user behaviour on this website.

    Matomo is an open-source web analysis platform. This platform is used by the website operator to measure, collect, analyze, and note visitor data in order to understand and optimize your website.

    The Matomo component is operated by Innocraft Ltd., 150 Willis St., 6011 Wellington, New Zealand.

    Matomo is used to analyze the behavior of website visitors, to identify potential pitfalls, pages not found, problems with search engine identification and the most-accessed content. As soon as the data are processed (e.g. number of visitors who end up on a page not found), Matomo creates reports for website operators, based on which suitable measures can be developed.

    Matomo processes the following personal data:

    IP address, of which the last two blocks are anonymized using a setting in the Matomo administrator settings
    Country from which access occurs
    Browser, operating system, device type, resolution, language
    Time and duration of the visit
    Website, from which access occurs
    Click and scroll behavior
    Mouse flow

    The processing of personal data using Matomo is based on legitimate interest.Processing your personal data with Matomo enables us to determine which parts of our website need to be improved.

    For example, Matomo provides insights that help us improve the structure of our website to increase user-friendliness.

    Our team benefits from processing your personal data and immediately implements necessary changes on the website.

    By processing your personal data, you benefit from a website that is constantly improving, in which all information is presented to you in the best possible way, allowing full support while using the website.

    We use Google Analytics to analyze website usage. The obtained data is used to optimize our website and advertising measures.

    Google Analytics is a web analytics service provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, United States). Google processes the data for website use on our behalf and is contractually obliged to take measures to ensure the confidentiality of the processed data.

    During your visit to our website pages, the following data is collected:

    Called-up pages
    Orders, including the sales and the ordered products
    The achievement of “website objectives” (for example, contact requests and newsletter subscriptions)
    Your behavior on our Webpages (for example clicks, scrolling behavior and duration of your visit)
    Your approximate location (country and city)
    Your IP-Address (in abbreviated form, so that no clear indentification is possible)
    Technical Information, such as browser, Internet provider, device and screen resolution
    Source of your visit (i.e. which website or advertising medium brought you to us)
    This data is transferred to a Google server in the USA. Google complies with the data protection regulations of the “EU-US Privacy Shield Agreement”.

    Google Analytics stores cookies in your web browser for a period of two years since your last visit. These cookies contain a randomly generated user ID that can be used to recognize you on future visits to the site.

    The recorded data is stored together with the randomly generated User-ID, which enables the evaluation of pseudonymous user profiles. This user-related data is automatically deleted after 14 months. Other data remains stored in aggregated form for an unlimited period of time.

    If you do not agree with the collection, you can prevent this by installing the browser add-on once to deactivate Google Analytics.

    This website uses the Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags through one interface. The Tag Manager tool itself (which implements the tags) is a cookie-free domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If deactivation has been carried out at the domain or cookie level, this remains in place for all tracking tags that are implemented with Google Tag Manager.
  • 07. Cookies

    We use cookies to the extent permitted by your security settings.

    The use of cookies makes it possible to save data on your computer when you access our website.

    Essential cookies: We use a cookie that is required for user registration, and to differentiate between the various user roles in the system.

    Further, settings not related to registration, such as the website language and location of mobile users are stored in cookies.

    Analytic and performance-based cookies: We use cookies to check the performance of our online services and in the context of our analytics processes with the goal of improving the content of our website on which our online services are offered.

    The user may block the placement of cookies by our website at any time by adjusting the settings in his or her web browser and thereby object to the placement of cookies in the long-term.

    In this case, however, the functionality of the essential services is no longer ensured.

    Furthermore, cookies that were already placed can be erased via a web browser or other software programs can be deleted at any time. This is possible in all common web browsers.

    A notice regarding the use of cookies is displayed on the website and must be confirmed.
  • 08. Data sharing and recipients

    Your data are not transferred to third parties, unless

    this is explicitly noted in the respective description of the type of data processing.
    if you as the user book appointment or instant tickets, and the corporate customer with whom you are booking this appointment or instant ticket requires the transfer of these data. In this case, however, you are informed before booking and you may cancel it at any time.
    if your have given your explicit consent according to Article 6 (1) (1a) of the GDPR,
    transfer according to Article 6 (1) (1f) of the GDPR to enforce, exercise, or defend legal claims is required and there exist no grounds for the assumption that you have an overriding interest in preventing the transfer of your data that must be protected,
    in the event that a legal requirement exists for transfer according to Article 6 (1) (1c) of the GDPR - if this is necessary for the performance of contractual relations with you according to Article 6 (1) (1b).

    The transfer of personal data to countries outside of the EEA (European Economic Aera) or an international organization only occurs, if this is necessary for the processing of your instant and appointment ticket booking and therefore the fulfillment of the service, the transfer is required by law, or you have given your consent. In these cases, recipients may include local corporate customers or state authorities, amongst others.

    In addition, we use external provides to process our services, who have been carefully selected and commissioned in writing.

    They are bound to our instructions and regularly scrutinized by us. If required, we have also entered order fulfillment contracts in accordance with Article 28 of the GDPR with them.

    The service providers include providers of web hosting, email dispatch, as well the maintenance and service for our IT systems, etc. Data are not shared with third parties in this context.
  • 09. Rights of the data subject

    You may exercise your right to access, rectification, and erasure with respect to the processing and usage of your personal data at any time.

    You also have the right to limitation of processing, data portability, and objection.

    You may assert these rights by contacting Timeacle GmbH & Co. KG using the email address or the contact information provided in the imprint.
  • 10. Acknowledgement of the Privacy policy

    The user of the timeacle websites ad timeacle products accepts this privacy policy to its full extent.

    In case of objection, our products and services shall be no longer available.
  • 11. Modifications and version of the privacy policy

    We reserve the right to modify or amend this privacy policy if necessary under consideration of the applicable legal provisions.

    In this way, we are able to meet the current legal requirements and adjust our services accordingly, e.g. if new services are introduced.

    The most recent version applies for your visit.

    Version of this privacy policy: 20/10/2020