Privacy Policy

We have written this privacy policy (version 01.01.1970-121681930) to provide you with information in accordance with the requirements of the General Data Protection Regulation (EU) 2016/679 as well as to explain what information we collect, how we use data and what choices you have as a visitor to this website.

Privacy policies usually sound very technical. However, this version should describe the most important things as simply and clearly as possible. Moreover, technical terms are explained in a reader-friendly manner whenever possible. We would also like to convey that we only collect and use information via this website if there is a corresponding legal basis for it. This is certainly not possible if you give very brief technical explanations, as are often standard on the Internet when it comes to data protection. We hope you find the following explanations interesting and informative. Maybe you will also find some information that you did not know yet.
Should you still have questions, we kindly ask you to follow the existing links to see further information on third-party websites, or to simply write us an email. You can find our contact information in our website’s imprint.

Automatic Data Retention

Every time you visit a website nowadays, certain information is automatically created and stored, just as it happens on this website. This data should be collected as sparingly as possible, and only with good reason. By website, we mean the entirety of all websites on your domain, i.e. everything from the homepage to the very last subpage (like this one here). By domain we mean example.uk or examplepage.com.

Even while you are currently visiting our website, our web server – this is the computer this website is stored on, usually automatically retains data such as the below – for reasons such as operational security or for creating access statistics etc.

  • the full address (URL) of the accessed website (e. g. https://www.examplepage.uk/examplesubpage.html/)
  • browser and browser version (e.g. Chrome 87)
  • the operating system used (e.g. Windows 10)
  • the address (URL) of the previously visited site (referrer URL) (z. B. https://www.examplepage.uk/icamefromhere.html/)
  • the host name and the IP-address of the device the website is accessed from (e.g. COMPUTERNAME and 194.23.43.121)
  • date and time
  • in so-called web server log files.

As an illustration:

Browser und Webserver

Generally, these files are stored for two weeks and are then automatically deleted. We do not pass these data to others, but we cannot exclude the possibility that this data may be looked at by the authorities in case of illegal conduct.

In short: your visit is logged by our provider (company that runs our website on servers), but we do not pass on your data!

Cookies

Our website uses HTTP-cookies to store user-specific data.
For your better understanding of the following Privacy Policy statement, we will explain to you below what cookies are and why they are in use.

What exactly are cookies?

Every time you surf the internet, you use a browser. Common browsers are for example Chrome, Safari, Firefox, Internet Explorer and Microsoft Edge. Most websites store small text-files in your browser. These files are called cookies.

What should not be dismissed, is that cookies are very useful little helpers. Nearly all websites use cookies. More accurately speaking these are HTTP-cookies, since there are also different cookies for other uses. http-cookies are small files which our website stores on your computer. These cookie files are automatically put into the cookie-folder, which is like the “brain” of your browser. A cookie consists of a name and a value. Moreover, to define a cookie, one or multiple attributes must be specified.

Cookies save certain parts of your user data, such as e.g. language or personal page settings. When you re-open our website, your browser submits these “user specific” information back to our site. Thanks to cookies, our website knows who you are and offers you the settings you are familiar to. In some browsers every cookie has its own file, in others such as Firefox, all cookies are stored in one single file.

There are both first-party cookies and third-party cookies. First-party cookies are created directly by our site, while third-party cookies are created by partner-websites (e.g. Google Analytics). Every cookie is individual, since every cookie stores different data. The expiration time of a cookie also varies – it can be a few minutes, or up to a few years. Cookies are no software-programs and contain no computer viruses, trojans or any other malware. Cookies also cannot access your PC’s information.

This is an example of how cookie-files can look:

name: _ga
value: GA1.2.1326744211.152121681930-9
purpose: differentiation between website visitors
expiration date: after 2 years

A browser should support these minimum sizes:

  • at least 4096 bytes per cookie
  • at least 50 cookies per domain
  • at least 3000 cookies in total

Which types of cookies are there?

What exact cookies we use, depends on the used services. We will explain this in the following sections of the Privacy Policy statement. Firstly, we will briefly focus on the different types of HTTP-cookies.

There are 4 different types of cookies:

Essential Cookies
These cookies are necessary to ensure the basic function of a website. They are needed when a user for example puts a product into their shopping cart, then continues surfing on different websites and comes back later in order to proceed to the checkout. Even when the user closed their window priorly, these cookies ensure that the shopping cart does not get deleted.

Purposive Cookies
These cookies collect info about the user behaviour and record if the user potentially receives any error messages. Furthermore, these cookies record the website’s loading time as well as its behaviour within different browsers.

Target-orientated Cookies
These cookies care for an improved user-friendliness. Thus, information such as previously entered locations, fonts or data in forms stay saved.

Advertising Cookies
These cookies are also known as targeting-Cookies. They serve the purpose of delivering individually adapted advertisements to the user. This can be very practical, but also rather annoying.

Upon your first visit to a website you are usually asked which of these cookie-types you want to accept. Furthermore, this decision will of course also be saved in a cookie.

How can I delete cookies?

You yourself take the decision if and how you want to use cookies. Thus, no matter what service or website cookies are from, you always have the option to delete, deactivate or only partially allow them. Therefore, you can for example block cookies of third parties but allow any other cookies.

If you want change or delete cookie-settings and would like to determine which cookies have been saved to your browser, you can find this info in your browser-settings:

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

Firefox: Clear cookies and site data in Firefox

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete cookies in Microsoft Edge

If you generally do not want to allow any cookies at all, you can set up your browser in a way, to notify you whenever a potential cookie is about to be set. This gives you the opportunity to manually decide to either permit or deny the placement of every single cookie. The settings for this differ from browser to browser. Therefore, it might be best for you to search for the instructions in Google. If you are using Chrome, you could for example put the search phrase “delete cookies Chrome” or “deactivate cookies Chrome” into Google.

How is my data protected?

There is a “cookie policy” that has been in place since 2009. It states that the storage of cookies requires the user’s consent. However, among the countries of the EU, these guidelines are often met with mixed reactions. In Austria the guidelines have been implemented in § 96 section 3 of the Telecommunications Act (TKG).

If you want to learn more about cookies and do not mind technical documentation, we recommend https://tools.ietf.org/html/rfc6265, the Request for Comments of the Internet Engineering Task Force (IETF) called “HTTP State Management Mechanism”.

Storage of Personal Data

Any personal data you electronically submit to us on this website, such as your name, email address, home address or other personal information you provide via the transmission of a form or via any comments to the blog, are solely used for the specified purpose and get stored securely along with the respective submission times and IP-address. These data do not get passed on to third parties.

Therefore, we use personal data for the communication with only those users, who have explicitly requested being contacted, as well as for the execution of the services and products offered on this website. We do not pass your personal data to others without your approval, but we cannot exclude the possibility this data will be looked at in case of illegal conduct.

If you send us personal data via email – and thus not via this website – we cannot guarantee any safe transmission or protection of your data. We recommend you, to never send confidential data via email.

Rights in accordance with the General Data Protection Regulation

You are granted the following rights in accordance with the provisions of the GDPR (General Data Protection Regulation) and the Austrian Data Protection Act (DSG):

  • right to rectification (article 16 GDPR)
  • right to erasure (“right to be forgotten“) (article 17 GDPR)
  • right to restrict processing (article 18 GDPR)
  • righ to notification – notification obligation regarding rectification or erasure of personal data or restriction of processing (article 19 GDPR)
  • right to data portability (article 20 GDPR)
  • Right to object (article 21 GDPR)
  • right not to be subject to a decision based solely on automated processing – including profiling – (article 22 GDPR)

If you think that the processing of your data violates the data protection law, or that your data protection rights have been infringed in any other way, you can lodge a complaint with your respective regulatory authority. For Austria this is the data protection authority, whose website you can access at https://www.data-protection-authority.gv.at/.

Jetpack Privacy Policy

We use the WordPress plug-in Jetpack on our website. Jetpack is a software that provides us with an array of services such as web analyses. Jetpack is operated by Automattic (Inc. 132 Hawthorne Street San Francisco, CA 94107, USA), which uses Quantcast (Inc., 201 3rd St, Floor 2, San Francisco, CA 94103-3153, USA). The integrated tracking tool also collects, stores and processes your personal data. In this privacy policy, we will show you exactly which data are involved, why we use Jetpack and how you can prevent this data storage.

What is Jetpack?

Jetpack is a plug-in for WordPress websites and has many different functions and modules. All these tools help us not only to design our website more beautifully, but also to make it safer and to welcome more visitors. Jetpack for example allows to display related posts and to share content. On top of that it can also improve our website’s loading speed. All functions are hosted and provided by WordPress.

Why do we use Jetpack?

It is crucial for us that you feel comfortable on our website and find what you are looking for. We can only be successful if you are satisfied with our services. And for us to know how and where we can improve our website, we need information. With Jetpack we can for example see how often and for how long you are on a single site or which buttons you tend to click. With the help of this information, we can improve our website and adapt it to your wishes and preferences.

Which data are stored by Jetpack?

Your personal data will be identified, stored and processed, which is done especially through the built-in tracking tool WordPress.com-statistics. In order for Jetpack to work, Jetpack will set a cookie in your browser when you open a website with built-in components of the tool. The collected data will be synchronised with Automattic and stored there.

In addition to your IP address (which is anonymised before storage), the retained data includes data on your user behaviour, which is for example your browser type, unique device identifier, preferred language, the date and time of page entry, your operating system and information about your mobile network. Jetpack uses this information to improve its own services and offers and to get better insights on the use of its services. The following data may also be synchronised and stored:

  • For Google Ads customers, email address and physical address of the account will be synchronised
  • Successful and unsuccessful login attempts. Your IP address and the user agent will also be stored for this purpose
  • User IDs, usernames, email addresses, roles, and skills of the registered users. However, no passwords will be retained
  • The user ID of users who make changes to the website
  • Twitter username, if it has been configured with Jetpack

Jetpack also uses cookies to store data. In the following we will show you a few exemplary cookies that Jetpack may use:

Name: eucookielaw
Value: 1613651061376121681930-6
Purpose: Stores the status of the user’s consent to the use of cookies.
Expiry date: after 180 days

Name: tk_ai
Value: 0
Purpose: This cookie stores a randomly generated anonymous ID. It is only used within the admin area to keep track of general analyses.
Expiry date: after end of the session

Name: tk_tc
Value: E3%2BgJ1Pw6iYKk%2Fvj121681930-3
Purpose: This is a so-called referral cookie. With it, the connection between WooCommerce and a website with a Jetpack plugin is analysed.
Expiry date: after end of the session

Note: Jetpack uses many different cookies. Which cookies are actually used depends on what Jetpack functions are used and on what your actions are on the websites that have an integrated Jetpack plug-in. At https://jetpack.com/support/cookies/ you will see a list of possible cookies used by Jetpack.

How long and where are the data stored?

Automattic retains the collected data until it is no longer used for its own services. Beyond this period, your data will only stay stored if the company is obliged to keep it for legal reasons. Certain data are deleted after about 30 days. These include web server logs such as your IP address, browser type and operating system. The data are stored on the company’s American servers.

How can I delete my data or prevent data retention?

As mentioned above, Jetpack uses cookies to retain data. If you do not want Jetpack to collect your data in the future, you can request an “Opt-Out” cookie at https://www.quantcast.com/opt-out/. Quantcast will then place this cookie and none of your visitor data will be stored. This will be the case until you delete this cookie again.

Alternatively, you can easily manage, deactivate or delete cookies yourself in your browser if you want to. Cookie management works a little differently depending on the browser type you are using. In the following, you will find instructions to do this in the most common browsers.

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

Firefox: Clear cookies and site data in Firefox

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete cookies in Microsoft Edge

If you want to find out more about the privacy guidelines and data processing by Jetpack or Automattic, we recommend you to read the privacy policy at https://automattic.com/privacy/, the cookie guidelines at https://automattic.com/cookies/ and also the information page at https://jetpack.com/support/what-data-does-jetpack-sync/. We hope we could provide you with a good overview on Jetpack’s data processing.

Embedded Social Media elements Privacy Policy

We have embedded elements from social media services on our website, to display pictures, videos and texts. By visiting pages that present such elements, data is transferred from your browser to the respective social media service, where it is stored. We do not have access to this data.
The following links lead to the respective social media services’ sites, where you can find a declaration on how they handle your data:

Facebook Data Policy

We use selected Facebook tools on our website. Facebook is a social media network of the company Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland. With the aid of this tool we can provide the best possible offers to you and anyone interested in our products and services. In the following we will give you an overview on the different Facebook tools, as well as on what data is sent to Facebook and how you can delete these data.

What are Facebook tools?

Along with many other products, Facebook also offers so called “Facebook Business Tools”. This is Facebook’s official name for the tools, but it is not very common. Therefore, we decided to merely call them “Facebook tools”. They include the following:

  • Facebook-Pixel
  • social plugins (e.g. the “Like” or “Share“ button)
  • Facebook Login
  • Account Kit
  • APIs (application programming interface)
  • SDKs (Softwart developmept kits)
  • Plattform-integrations
  • Plugins
  • Codes
  • Specifications
  • Documentations
  • Technologies and Services

With these tools Facebook can extend its services and is able to receive information on user activities outside of Facebook.

Why do we use Facebook tools on our website?

We only want to show our services and products to people who are genuinely interested in them. With the help of advertisements (Facebook Ads) we can reach exactly these people. However, to be able to show suitable adverts to users, Facebook requires additional information on people’s needs and wishes. Therefore, information on the user behaviour (and contact details) on our website, are provided to Facebook. Consequently, Facebook can collect better user data and is able to display suitable adverts for our products or services. Thanks to the tools it is possible to create targeted, customised ad campaigns of Facebook.

Facebook calls data about your behaviour on our website “event data” and uses them for analytics services. That way, Facebook can create “campaign reports” about our ad campaigns’ effectiveness on our behalf. Moreover, by analyses we can get a better insight in how you use our services, our website or our products. Therefore, some of these tools help us optimise your user experience on our website. With the social plugins for instance, you can share our site’s contents directly on Facebook.

What data is saved by the Facebook tools?

With the use of the Facebook tools, personal data (customer data) may be sent to Facebook. Depending on the tools used, customer data such as name, address, telephone number and IP address may be transmitted.

Facebook uses this information to match the data with the data it has on you (if you are a Facebook member). However, before the customer data is transferred to Facebook, a so called “Hashing” takes place. This means, that a data record of any size is transformed into a string of characters, which also has the purpose of encrypting data.

Moreover, not only contact data, but also “event data“ is transferred. These data are the information we receive about you on our website. To give an example, it allows us to see what subpages you visit or what products you buy from us. Facebook does not disclose the obtained information to third parties (such as advertisers), unless the company has an explicit permission or is legally obliged to do so. Also, “event data“ can be linked to contact information, which helps Facebook to offer improved, customised adverts. Finally, after the previously mentioned matching process, Facebook deletes the contact data.

To deliver optimised advertisements, Facebook only uses event data, if they have been combined with other data (that have been collected by Facebook in other ways). Facebook also uses event data for the purposes of security, protection, development and research. Many of these data are transmitted to Facebook via cookies. Cookies are little text files, that are used for storing data or information in browsers. Depending on the tools used, and on whether you are a Facebook member, a different number of cookies are placed in your browser. In the descriptions of the individual Facebook tools we will go into more detail on Facebook cookies. You can also find general information about the use of Facebook cookies at https://www.facebook.com/policies/cookies.

How long and where are the data saved?

Facebook fundamentally stores data, until they are no longer of use for their own services and products. Facebook has servers for storing their data all around the world. However, customer data is cleared within 48 hours after they have been matched with their own user data.

How can I delete my data or prevent data retention?

In accordance with the General Data Protection Regulation (GDPR) you have the right of information, rectification, transfer and deletion of your data.

The collected data is only fully deleted, when you delete your entire Facebook account. Deleting your Facebook account works as follows:

1) Click on settings in the top right side in Facebook.

2) Then, click “Your Facebook information“ in the left column.

3) Now click on “Deactivation and deletion”.

4) Choose “Permanently delete account“ and then click on “Continue to account deletion“.

5) Enter your password, click on “continue“ and then on “Delete account“.

The retention of data Facebook receives via our site is done via cookies (e.g. with social plugins), among others. You can deactivate, clear or manage both all and individual cookies in your browser. How this can be done differs depending on the browser you use. The following instructions show, how to manage cookies in your browser:

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

Firefox: Clear cookies and site data in Firefox

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete cookies in Microsoft Edge

If you generally do not want to allow any cookies at all, you can set up your browser to notify you whenever a cookie is about to be set. This gives you the opportunity to decide upon the permission or deletion of every single cookie.

Facebook is an active participant in the EU-U.S. Privacy Shield Framework, which regulates correct and secure transfer of personal data. You can find more information at https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC. We hope we could give you an understanding of the most important information about the use of Facebook tools and data processing. If you want to find out more on how Facebook use your data, we recommend reading the data policies at https://www.facebook.com/about/privacy/update.

Facebook Social Plugins Privacy Policy

We installed so-called social plugins from Facebook Inc. to our website. You can recognise these buttons by the classic Facebook logo, the “Like” button (hand with raised thumb) or by a “Facebook plugin” label. A social plugin is a small part of Facebook that is integrated into our page. Each plugin has its own function. The most used functions are the well-known “Like” and “Share” buttons.

Facebook offers the following social plugins:

  • “Save” button
  • “Like” button, Share, Send and Quote
  • Page plugin
  • Comments
  • Messenger plugin
  • Embedded posts and video player
  • Group Plugin

At https://developers.facebook.com/docs/plugins you will find more information on how the individual plugins are used. On the one hand, we use the social plug-ins to offer you a better user experience on our site, and on the other hand because Facebook can optimise our advertisements with it.

If you have a Facebook account or have already visited facebook.com, Facebook has already placed at least one cookie in your browser. In this case, your browser sends information to Facebook via this cookie as soon as you visit our website or interact with social plugins (e.g. the “Like” button).

The received information will be deleted or anonymised within 90 days. According to Facebook, this data includes your IP address, the websites you have visited, the date, time and other information relating to your browser.

In order to prevent Facebook from collecting much data and matching it with your Facebook data during your visit to our website, you must log out of Facebook while you visit our website.

If you are not logged in to Facebook or do not have a Facebook account, your browser sends less information to Facebook because you have fewer Facebook cookies. Nevertheless, data such as your IP address or which website you are visiting can be transmitted to Facebook. We would like to explicitly point out that we do not know what exact data is collected. However, based on our current knowledge, we want to try informing you as best we can about data processing. You can also read about how Facebook uses the data in the company’s data policy at https://www.facebook.com/about/privacy/update.

At least the following cookies are set in your browser when you visit a website with social plugins from Facebook:

Name: dpr
Value: no information
Purpose:This cookie is used to make the social plugins work on our website.
Expiry date: after end of session

Name: fr
Value: 0jieyh4121681930c2GnlufEJ9..Bde09j…1.0.Bde09j
Purpose:The cookie is also necessary for the plugins to function properly
Expiry date: after 3 months

Note: These cookies were set after our test and may be placed even if you are not a Facebook member.

If you are registered with Facebook, you can change your settings for advertisements yourself at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. If you are not a Facebook user, you can go to https://www.youronlinechoices.com/uk/your-ad-choices/ and manage your usage-based online advertising. There you have the option to deactivate or activate providers.

If you want to learn more about Facebook’s data protection, we recommend the company’s own data policies at https://www.facebook.com/policy.php.

Facebook Login Privacy Policy

We integrated the convenient Facebook Login to our website. With it, you can easily log into our site with your Facebook account, without having to create a new user account. If you decide to register via the Facebook Login, you will be redirected to the social media network Facebook. There, you can log in with your Facebook user data. By using this method to log in, data on you and your user behaviour is stored and transmitted to Facebook.

To save the data, Facebook uses various cookies. In the following we will show you the most significant cookies that are placed in your browser or that already exist when you log into our site via the Facebook Login:

Name: fr
Value: 0jieyh4c2GnlufEJ9..Bde09j…1.0.Bde09j
Purpose: This cookie is used to make the social plugin function optimally on our website.
Expiry date: after 3 months

Name: datr
Value: 4Jh7XUA2121681930SEmPsSfzCOO4JFFl
Purpose: Facebook sets the “datr” cookie, when a web browser accesses facebook.com. The cookie helps to identify login activities and protect users.
Expiry date: after 2 years

Name: _js_datr
Value: deleted
Purpose: Facebook sets this session cookie for tracking purposes, even if you do not have a Facebook account or are logged out.
Expiry date: after the end of the session

Note: The cookies we stated are only a small range of the cookies which are available to Facebook. Other cookies include for example _ fbp, sb or wd. It is not possible to disclose an exhaustive list, since Facebook have a multitude of cookies at their disposal which they use in variation.

On the one hand, Facebook Login enables a fast and easy registration process. On the other hand, it gives us the opportunity to share data with Facebook. In turn, we can customise our offer and advertising campaigns better to your needs and interests. The data we receive from Facebook by this means, is public data such as

  • your Facebook name
  • your profile picture
  • your stored email address
  • friends lists
  • button clicks (e.g. “Like“ button)
  • date of birth
  • language
  • place of residence

In return, we provide Facebook with information about your activities on our website. These include information on the terminal device you used, which of our subpages you visit, or what products you have bought from us.

By using Facebook Login, you agree to the data processing. You can terminate this agreement anytime. If you want to learn more about Facebook’s data processing, we recommend you to read Facebook’s Data Policy at https://www.facebook.com/policy.php.

If you are registered with Facebook, you can change your advertisement settings anytime at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen.

Instagram Privacy Policy

We have integrated functions of Instagram to our website. Instagram is a social media platform of the company Instagram LLC, 1601 Willow Rd, Menlo Park CA 94025, USA. Since 2012, Instagram is a subsidiary company of Facebook Inc. and is a part of Facebook’s products. The inclusion of Instagram’s contents on our website is called embedding. With this, we can show you Instagram contents such as buttons, photos or videos directly on our website. If you open websites of our online presence, that have an integrated Instagram function, data gets transmitted to, as well as stored and processed by Instagram. Instagram uses the same systems and technologies as Facebook. Therefore, your data will be processed across all Facebook firms.

In the following, we want to give you a more detailed insight on why Instagram collects data, what data these are and how you can control data processing. As Instagram belongs to Facebook Inc., we have, on the one hand received this information from the Instagram guidelines, and on the other hand from Facebook’s Data Policy.

What is Instagram?

Instagram is one of the most famous social media networks worldwide. Instagram combines the benefits of a blog with the benefits of audio-visual platforms such as YouTube or Vimeo. To “Insta“ (how the platform is casually called by many users) you can upload photos and short videos, edit them with different filters and also share them to other social networks. Also, if you do not want to be active on Instagram yourself, you can just follow other interesting users.

Why do we use Instagram on our website?

Instagram is a social media platform whose success has skyrocketed within recent years. Naturally, we have also reacted to this boom. We want you to feel as comfortable as possible on our website. Therefore, we attach great importance to diversified contents. With the embedded Instagram features we can enrich our content with helpful, funny or exciting Instagram contents. Since Instagram is a subsidiary company of Facebook, the collected data can also serve us for customised advertising on Facebook. Hence, only persons who are genuinely interested in our products or services can see our ads.

Instagram also uses the collected data for tracking and analysis purposes. We receive summarised statistics and therefore more insight to your wishes and interests. It is important to mention that these reports do not identify you personally.

What data is saved by Instagram?

Whenever you land on one of our sites, which have Instagram functions (i.e. Instagram photos or plugins) integrated to them, your browser automatically connects with Instagram’s servers. Thereby, data is sent to, as well as saved and processed by Instagram. This always happens, whether you have an Instagram account or not. Moreover, it includes information on our website, your computer, your purchases, the advertisements you see and on how you use our offer. The date and time of your interaction is also stored. If you have an Instagram account or are logged in, Instagram saves significantly more data on you.

Facebook distinguishes between customer data and event data. We assume this is also the case for Instagram. Customer data are for example names, addresses, phone numbers and IP addresses. These data are only transmitted to Instagram, if they have been “hashed” first. Thereby, a set of data is transformed into a string of characters, which encrypts any contact data. Moreover, the aforementioned “event data“ (data on your user behaviour) is transmitted as well. It is also possible, that contact data may get combined with event data. The collected data data is matched with any data Instagram already has on you.

Furthermore, the gathered data are transferred to Facebook via little text files (cookies) which usually get set in your browser. Depending on the Instagram function used, and whether you have an Instagram account yourself, the amount of data that gets stored varies.

We assume data processing on Instagram works the same way as on Facebook. Therefore, if you have an account on Instagram or have visited www.instagram.com, Instagram has set at least one cookie. If this is the case, your browser uses the cookie to send information to Instagram, as soon as you come across an Instagram function. No later than 90 days (after matching) the data is deleted or anonymised. Even though we have studied Instagram’s data processing in-depth, we cannot tell for sure what exact data Instagram collects and retains.

In the following we will show you a list of the least cookies placed in your browser when click on an Instagram function (e.g. button or an Insta picture). In our test we assume you do not have an Instagram account, since if you would be logged in to your Instagram account, your browser would place significantly more cookies.
The following cookies were used in our test:

Name: csrftoken
Value: “”
Purpose: This cookie is most likely set for security reasons to prevent falsifications of requests. We could not find out more information on it.
Expiry date: after one year

Name: mid
Value: “”
Purpose: Instagram places this cookie to optimise its own offers and services in- and outside of Instagram. The cookie allocates a unique user ID.
Expiry date: after end of session

Name: fbsr_121681930124024
Value: no information
Purpose: This cookie stores the login request of Instagram app users. Expiry date: after end of session

Name: rur
Value: ATN
Purpose: This is an Instagram cookie which guarantees functionality on Instagram.
Expiry date: after end of session

Name: urlgen
Value: “{”194.96.75.33”: 1901}:1iEtYv:Y833k2_UjKvXgYe121681930”
Purpose: This cookie serves Instagram’s marketing purposes.
Expiry date: after end of session

Note: We do not claim this list to be exhaustive. The cookies that are placed in each individual case, depend on the functions embedded as well as on your use of Instagram.

How long and where are these data stored?

Instagram shares the information obtained within the Facebook businesses with external partners and persons you are globally connected with. Data processing is done according to Facebook’s internal data policy. Your data is distributed to Facebook’s servers across the world, partially for security reasons. Most of these servers are in the USA.

How can I delete my data or prevent data retention?

Thanks to the General Data Protection Regulation (GDPR), you have the right of information, rectification, transfer and deletion of your data. Furthermore, you can manage your data in Instagram’s settings. If you want to delete your data on Instagram completely, you will have to delete your Instagram account permanently.

And this is how an Instagram account can be deleted:

First, open the Instagram app. Then, navigate to your profile page, select the three bars in the top right, choose “Settings” and then click “Help”. Now, you will be redirected to the company’s website, where you must click on “Managing Your Account” and then “Delete Your Account”.

When you delete your account completely, Instagram deletes posts such as your photos and status updates. Any information other people shared about you are not a part of your account and do therefore not get deleted.

As mentioned before, Instagram primarily stores your data via cookies. You can manage, deactivate or delete these cookies in your browser. Depending on your browser, managing them varies a bit. We will show you the instructions of the most relevant browsers here.

Chrome: Clear, enable and manage cookies in Chrome

Safari: Manage cookies and website data in Safari

Firefox: Clear cookies and site data in Firefox

Internet Explorer: Delete and manage cookies

Microsoft Edge: Delete cookies in Microsoft Edge

Generally, you can set your browser to notify you whenever a cookie is about to be set. Then you can individually decide upon the permission of every cookie.

Instagram is a subsidiary company of Facebook Inc. and Facebook is an active participant in the EU-U.S. Privacy Shield Framework. This framework regulates correct transfer between the USA and the European Union. At https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC you can find out more about this. We gave our best to make you familiar with the most important information on data processing by Instagram. At https://help.instagram.com/519522125107875 you can find out more on Instagram’s data policies. All texts are copyrighted.

Source: Created with the Datenschutz Generator by AdSimple