data protection
Table of contents
1. Data protection at a glance
General information
The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to identify you personally. For detailed information on the subject of data protection, please refer to our privacy policy listed below this text.
Data collection on this website
Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. Their contact details can be found in the legal notice on this website.
How do we collect your data?
Your data is collected when you provide it to us. This may be data that you enter in a contact form, for example.
Other data is collected automatically by our IT systems when you visit the website. This is mainly technical data (e.g., Internet browser, operating system, or time of page view). This data is collected automatically as soon as you enter this website.
What do we use your data for?
Some of the data is collected to ensure that the website is provided without errors. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. You can contact us at any time at the address given in the imprint if you have any further questions on the subject of data protection. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
In addition, you have the right to request the restriction of the processing of your personal data under certain circumstances. Details can be found in the privacy policy under “Right to restriction of processing.”
Analysis tools and third-party tools
When you visit this website, your surfing behavior may be statistically evaluated. This is done primarily with cookies and so-called analysis programs. The analysis of your surfing behavior is usually anonymous; your surfing behavior cannot be traced back to you.
You can object to this analysis or prevent it by not using certain tools. Detailed information about these tools and your options for objecting can be found in the following privacy policy.
2. Hosting and content delivery networks (CDN)
External hosting
This website is hosted by an external service provider (host). The personal data collected on this website is stored on the host’s servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated via a website.
The hoster is used for the purpose of fulfilling our contractual obligations to our potential and existing customers (Art. 6 (1) (b) GDPR) and in the interest of a secure, fast, and efficient provision of our online offering by a professional provider (Art. 6 (1) (f) GDPR).
Our host will only process your data to the extent necessary to fulfill its service obligations and will follow our instructions regarding this data.
Conclusion of a contract for order processing
In order to ensure data protection-compliant processing, we have concluded a contract for order processing with our host.
3. General information and mandatory information
data protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data is data that can be used to identify you personally. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission over the Internet (e.g., when communicating by email) can have security gaps. Complete protection of data against access by third parties is not possible.
Information about the responsible body
The responsible body for data processing on this website is:
Charleen Hay
Bahnhofstraße 6a
35435 Wettenberg
Phone: +49 1511 6309428
Email: hey (at) marketingminded (dot) de
The responsible body is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke your consent at any time. To do so, simply send us an informal email. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right to object to data collection in special cases and to direct marketing (Art. 21 GDPR)
IF DATA PROCESSING IS BASED ON ART. 6 PAR. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS DATA PROTECTION DECLARATION. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA, UNLESS WE CAN PROVE THAT THERE ARE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE OR DEFEND LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21(1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT MARKETING PURPOSES, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH MARKETING; THIS ALSO APPLIES TO PROFILING, INSOFAR AS IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT MARKETING PURPOSES (OBJECTION PURSUANT TO ART. 21(2) GDPR).
Right to lodge a complaint with the competent supervisory authority
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work, or place of the alleged violation. The right to lodge a complaint exists without prejudice to other administrative or judicial remedies.
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent that it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Information, deletion, and correction
Within the framework of the applicable legal provisions, you have the right to receive information free of charge at any time about your stored personal data, its origin and recipients, and the purpose of data processing, and, if applicable, a right to correct or delete this data. You can contact us at any time at the address given in the imprint if you have any further questions on the subject of personal data.
Objection to advertising emails
We hereby object to the use of contact data published within the scope of the imprint obligation for sending unsolicited advertising and information material. The operators of the website expressly reserve the right to take legal action in the event of unsolicited advertising information being sent, for example via spam emails.
Right to restriction of processing
You have the right to request the restriction of the processing of your personal data. To do so, you can contact us at any time at the address given in the imprint. The right to restriction of processing applies in the following cases:
- If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the verification, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
- If we no longer need your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
- If you have lodged an objection pursuant to Art. 21 (1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet clear whose interests prevail, you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data may – apart from its storage – only be processed with your consent or for the assertion, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.
4. Data collection on this website
Contact form
If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not pass on this data without your consent.
The processing of this data is based on Art. 6 (1) lit. b GDPR, provided that your inquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Art. 6 (1) (f) GDPR) or on your consent (Art. 6 (1) (a) GDPR), if this has been requested.
The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been processed). Mandatory legal provisions—in particular retention periods—remain unaffected.
Enquiries by email, telephone or fax
If you contact us by email, telephone or fax, your enquiry, including all resulting personal data (name, enquiry), will be stored and processed by us for the purpose of processing your request. We will not pass on this data without your consent.
This data is processed on the basis of Art. 6 (1) lit. b GDPR, provided that your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on your consent (Art. 6 (1) (a) GDPR) and/or our legitimate interests (Art. 6 (1) (f) GDPR), as we have a legitimate interest in the effective processing of inquiries addressed to us.
The data you send us via contact requests will remain with us until you request us to delete it, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g., after your request has been processed). Mandatory legal provisions—in particular statutory retention periods—remain unaffected.
Comment function on this website
For the comment function on this page, in addition to your comment, information about the time the comment was created, your email address and, if you do not post anonymously, the username you have chosen will also be stored.
Storage of IP addresses
Our comment function stores the IP addresses of users who post comments. Since we do not review comments on this website before they are published, we need this data in order to take action against the author in the event of legal violations such as insults or propaganda.
Subscribing to comments
As a user of the site, you can subscribe to comments after registering. You will receive a confirmation email to verify that you are the owner of the email address provided. You can unsubscribe from this feature at any time via a link in the info emails. In this case, the data entered when subscribing to comments will be deleted; however, if you have provided us with this data for other purposes and elsewhere (e.g., newsletter subscription), it will remain with us.
Storage period for comments
The comments and associated data (e.g., IP address) are stored and remain on this website until the commented content has been completely deleted or the comments must be deleted for legal reasons (e.g., offensive comments).
Legal basis
Comments are stored on the basis of your consent (Art. 6 (1) (a) GDPR). You can revoke your consent at any time. To do so, simply send us an informal email. The legality of data processing operations that have already taken place remains unaffected by the revocation.
5. Plugins and tools
Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you visit a page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Google’s servers. This allows Google to know that this website has been accessed via your IP address. The use of Google Web Fonts is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the uniform presentation of the typeface on its website. If corresponding consent has been requested (e.g., consent to the storage of cookies), processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; consent can be revoked at any time.
If your browser does not support web fonts, a standard font from your computer will be used.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://policies.google.com/privacy?hl=de.
Newsletter – MailerLite
We use the services of “MailerLite,” based at J. Basanaviciaus 15, LT-03108 Vilnius, Lithuania, to send our newsletter. MailerLite organizes and analyzes the sending of newsletters. The data required for sending the newsletter (email address, name, IP address, time, and date) is transferred to MailerLite’s servers and stored on their servers in Lithuania in accordance with the GDPR. Further information can be found in MailerLite’s privacy policy https://www.mailerlite.com/legal/privacy-policy and security statement https://www.mailerlite.com/legal/security-statement.
Registration for the newsletter is done via the “double opt-in” procedure. For this purpose, in addition to the above-mentioned data, we log the registration for the newsletter, the sending of a confirmation email, and the subsequent response.
Marketingminded.de also uses MailerLite to measure and analyze the success of the newsletters sent, so that we can better tailor future newsletters to the interests of our subscribers. When you open our newsletter, a so-called web beacon file connects to the MailerLite servers in Lithuania. This allows us to determine whether a newsletter has been opened and which links have been clicked on. In addition, technical information is collected: when you opened the newsletter, your IP address, the browser type, and the operating system you used to open the newsletter. This data is stored anonymously and cannot be assigned to an individual recipient.
Data processing is based on your consent (Art. 6 (1) (a) GDPR).
You can revoke/cancel your subscription to the newsletter and the associated data storage and analysis at any time. A corresponding unsubscribe link can be found in each individual newsletter, or you can contact us via the contact options at www.haylight.media. The legality of the data processing operations already carried out remains unaffected by the revocation.
This page links to content from LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. This includes buttons that redirect you to https://www.linkedin.com/. If you are a member of LinkedIn, LinkedIn can assign the content and functions you access to your profile. LinkedIn is used to make it easier to find the people listed on this page. (Art. 6 para. 1 sentence 1f) GDPR
LinkedIn guarantees compliance with European data protection laws: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active
Further information on LinkedIn’s data protection: https://de.linkedin.com/legal/privacy-policy?
You can object to data collection here: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
If you do not want Xing to receive your data, please do not click on the buttons.
If you do not want Xing to receive your data, please do not click on the buttons.
Information on data protection at Xing:
https://privacy.xing.com/de/datenschutzerklaerung
On this page, we link to pages from Facebook Ireland Limited, 4 Grand Canal Square, 2 Dublin, Ireland. When you click on these buttons, you will be automatically redirected to the Facebook website. In this case, your browser automatically establishes a connection to Facebook’s servers in the US and Ireland. Your information, such as browser data and IP address, is transmitted to these servers and stored there – even if you do not have a Facebook profile. If you are logged into Facebook when you click on one of these buttons, the collected data will automatically be linked to your personal profile by Facebook. The data is stored by Facebook for as long as necessary; data that is subject to statutory retention obligations is stored until these periods have expired.
We want to present all our content to our users as easily as possible – without them having to search for it themselves across multiple channels. We therefore have a legitimate interest in enabling users to interact with content on Facebook and in making our website interactive (Art. 6 (1) (f) GDPR).
You can prevent Facebook from collecting data by installing a browser plugin (you can find suitable plugins in your browser’s add-on search). Please note that this plugin only prevents data collection as long as it is installed on your computer.
Facebook’s privacy policy can be found at:
https://www.facebook.com/about/privacy
This page embeds features from Instagram LLC, 1601 Willow Rd. Menlo Park, CA 94025, USA. Instagram is a subsidiary of Facebook Inc. and is one of the Facebook products. Instagram/Facebook’s servers are located all over the world, but the majority are in the USA.
By embedding Instagram content, we can display buttons, photos, or videos from Instagram directly on our site. If you are logged into your Instagram account and click on the embedded content, data will be transmitted to Instagram, stored and processed. This allows Instagram to associate your visit to our site with your user account. Instagram uses the same systems and technologies as Facebook for this purpose, which means that your data is processed across all Facebook companies. As the site operator, we have no knowledge of the content or type of use of this data. We embed Instagram on www.haylight.media so that our users can easily find all types of our content on one page and do not have to search for our content across multiple channels. (GDPR Art. 6 (1) (1) (f)).
Further information on Instagram’s privacy policy: https://help.instagram.com/519522125107875
On this page, we use buttons that link to the social media network Pinterest Inc., 808 Brannan Street, San Francisco, CA 94103, USA. By clicking on these buttons, data (IP address, browser data, date/time, and cookies) is transmitted to Pinterest servers in the USA, where it is stored and evaluated. This transfer only takes place when you click on the buttons. If you do not want your data to be passed on, please do not click on these buttons. Data processing is essentially carried out by Pinterest, which may mean that data is not processed and stored anonymously. US government authorities may have access to individual data. In addition, Pinterest may link the collected data to other services where you have a user account.
The privacy policy, which information Pinterest collects and how they use it, can be found at:
https://policy.pinterest.com/de/privacy-policy
Analyse-Tool MonsterInsights / Google Analytics
We use the “Google Analytics Plugin for WordPress” from the American company MonsterInsights LCC, 7732 Maywood Crest Dr, West Palm Beach, Florida, 33412, USA on this website. With the help of this plugin, your user data can be stored, managed, and processed by Google Analytics. For example, when you click on a link, Google Analytics stores this “click” via the integrated plugin and offers insightful web analytics based on the data collected.
MonsterInsights uses the Google Analytics Reporting API for its services to collect data about our website and visitor behavior. This data is evaluated and then appears as charts, graphs, and tables directly on our WordPress dashboard. The dashboard can only be viewed by the operators of this website. The plugin offers features such as page analytics, statistics, and ad tracking. With the help of the plugin, we can easily set up tracking features such as event tracking, e-commerce tracking, or outbound link tracking for our website. With the help of this data, we can better tailor our website and our offerings to the wishes of our users. We use the statistics obtained exclusively to provide our service and, in your and our interest, to make the website more user-friendly, effective, secure, and interesting, and to use any advertisements in a targeted manner. The data collected is not used to identify individual users or linked to other personal data in order to create a user profile.
By installing the MonsterInsights plugin, a Google Analytics tracking code is integrated into our website. Google Analytics is a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. With the help of this tracking code, Google Analytics creates a random, unique ID that is linked to your browser cookie. This allows you to be recognized as a visitor to our website. If you visit us again in the future, you will be identified as a “returning” user. All collected data is then stored with this user ID. This allows pseudonymous user profiles to be created and evaluated. Your actions on our website are stored in cookies and app instance IDs. If you are linked to other Google services, the generated data may also be linked to third-party cookies.
All tracking is performed by Google Analytics and stored on its own servers in the USA. MonsterInsights passes all data directly to Google Analytics for processing on behalf of MonsterInsights. Google only shares this data if we allow it or if it is required by law. MonsterInsights does not use its own cookies to store data; instead, the code added by MonsterInsights loads Google Analytics, which adds cookies.
These cookies collect information such as which website you came to us from, which buttons and links you click on, how long you stay on a particular page, and when you leave the website. Your IP address is also displayed and stored in truncated form, so that no clear assignment is possible. Your location can be roughly determined via your IP address, and technical information such as device type, browser type, internet provider, and screen resolution is also stored.
The data is not stored by MonsterInsights, but exclusively by Google Analytics. There, the data is stored on Google servers, which are distributed worldwide but are mainly located in the USA. You can see exactly where the data centers are located here:
By default, your data is stored by Google for 26 months. The storage period applies to data linked to cookies, usage recognition, and advertising IDs. Web analytics, which appear in the form of reports, are generated from aggregated data and are stored independently of your user data.
You can prevent Google Analytics from storing your data by downloading a so-called opt-out cookie. You can find it here: https://tools.google.com/dlpage/gaoptout?hl=de Please note that this cookie only prevents the deactivation of Google Analytics JavaScript as long as it is installed on your PC. You can also deactivate, manage, or delete cookies via your browser. Regardless of this, you have the right to access, update, delete, and restrict your data at any time.
The use of MonsterInsights or Google Analytics requires your consent, which we have obtained with our cookie pop-up. According to Art. 6 (1) lit. a GDPR, this consent constitutes the legal basis for the processing of personal data, as may occur when collected by web analytics tools.
In addition to your consent, we have a legitimate interest in analyzing the behavior of website visitors in order to improve our offering technically and economically and make it more interesting for our users. With the help of MonsterInsights and Google Analytics, we can detect website errors, identify attacks, and improve economic efficiency. The legal basis for this is Art. 6 (1) lit. f GDPR. However, we only use MonsterInsights/Google Analytics if you have given your consent.
We would like to point out that, in the opinion of the European Court of Justice, there is currently no adequate level of protection for data transfers to the US. Data processing is mainly carried out by Google. This may mean that data is not processed and stored anonymously. Furthermore, US government authorities may have access to individual data. It may also happen that this data is linked to data from other Google services for which you have a user account.
If you would like to learn more about MonsterInsights, we recommend the following website:
https://www.monsterinsights.com/?tid=311287127
The Google Analytics privacy policy can be found at:
https://support.google.com/analytics/answer/6004245?hl=de
The Google Inc. terms of use can be found at:
https://marketingplatform.google.com/about/analytics/terms/de/?tid=311287127
Compliance GDPR / CCPA Cookie Consent
On this site, we use the cookie consent technology from Complianz B.V., Atoomweg 6b, 9743 AK Groningen, Netherlands, to obtain consent for and store certain cookies and to document this in accordance with the GDPR.
When you open this website, a Complianz pop-up appears asking for your consent to set cookies. The consent given or revoked is stored until you request us to delete it, delete the Complianz cookie yourself in your browser settings, or the purpose for data storage no longer applies. Legal retention periods remain unaffected by this.
The use of cookie consent technology is based on Art. 6 (1) (c) GDPR in order to obtain, document, and store the legally required consent for the use of cookies.
In addition to consent or revocation for the setting of cookies, Complianz stores the browser type and version, the operating system used, the time/date, IP address, and the name of the accessing computer. The data is not passed on to third parties.
Information on data protection and data processing by Complianz can be found at: https://complianz.io/legal/
Sources: https://www.e-recht24.de & https://www.adsimple.de