Michelle Winkler
c/o COCENTER
Koppoldstraße 1
86551 Aichach
Germany
Email: michelle.winkler@miichelle.moe
Disclaimer: The contents of this online offering have been created with great care and to the best of our knowledge. However, they are for informational purposes only and do not have legally binding effect unless they are legally required information (e.g., imprint, privacy policy, terms and conditions, or mandatory consumer information). We reserve the right to modify or delete the content in whole or in part, provided that contractual obligations remain unaffected. All offers are subject to change and non-binding.
Links to Third-Party Websites: The contents of third-party websites to which we directly or indirectly refer are outside our area of responsibility, and we do not endorse them. The provider of the linked websites is solely liable for all contents and, in particular, for damages resulting from the use of the information accessible on the linked websites.
Copyright and Trademark Rights: All contents displayed on this website, such as texts, photographs, graphics, trademarks, and trade names, are protected by the respective intellectual property rights (copyrights, trademarks). Their use, reproduction, etc. are subject to our rights or the rights of the respective authors or rights administrators.
Indication of Legal Violations: If you notice any legal violations within our online presence, please inform us accordingly. We will promptly remove any unlawful content and links upon becoming aware of them.
Created with the free Privacy Policy Generator by Dr. Thomas Schwenke
With the following privacy policy, we would like to inform you about the types of your personal data (hereinafter also referred to as "data") that we process, for what purposes, and to what extent. The privacy policy applies to all processing of personal data carried out by us, both in the context of providing our services and particularly on our websites, mobile applications, and external online presences, such as our social media profiles (hereinafter collectively referred to as the "online offering").
The terms used are not gender-specific.
Date: July 22, 2025
Michelle Winkler
c/o COCENTER
Koppoldstraße 1
86551 Aichach
Germany
Email: michelle.winkler@miichelle.moe.
Imprint: https://miichelle.moe/imprint.php.
The following overview summarizes the types of data processed and the purposes of their processing, referring to the affected individuals.
Below, you will find an overview of the legal bases of the General Data Protection Regulation (GDPR) on which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. Furthermore, if more specific legal bases are relevant in individual cases, we will inform you of these in the data protection declaration.
National Data Protection Regulations in Austria: In addition to the provisions of the General Data Protection Regulation, national regulations on data protection in Austria apply. This includes, in particular, the Austrian Data Protection Act (Datenschutzgesetz – DSG). The Data Protection Act contains special provisions, in particular, regarding the right to information, the right to rectification or deletion, the processing of special categories of personal data, the processing for other purposes, and the transmission as well as automated decision-making in individual cases.
In accordance with legal requirements, taking into account the state of the art, the implementation costs, and the nature, scope, circumstances, and purposes of processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, we implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.
These measures include, in particular, ensuring the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data, as well as the access, input, disclosure, availability, and separation thereof. Furthermore, we have established procedures to ensure the exercise of data subject rights, the deletion of data, and responses to data threats. Moreover, we consider the protection of personal data already during the development or selection of hardware, software, and procedures, in accordance with the principle of data protection by design and by default.
SSL encryption (https): To protect your data transmitted via our online offering, we use SSL encryption. You can recognize encrypted connections by the prefix https:// in the address line of your browser.
If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) or if the processing takes place in the context of using third-party services or the disclosure or transfer of data to other individuals, entities, or companies, this will only be done in accordance with legal requirements.
Subject to explicit consent or the contractual or legal requirement for data transfer, we will only process or allow the processing of data in third countries with an acknowledged level of data protection, contractual obligations through the use of standard data protection clauses issued by the European Commission, certifications, or binding corporate rules (Articles 44 to 49 of the GDPR, information page of the European Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_en).
Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user's computer. A cookie primarily serves to store information about a user during or after their visit within an online service. The stored information may include, for example, language settings on a website, login status, a shopping cart, or the point at which a video was viewed. The term 'cookies' also includes other technologies that fulfill the same functions as cookies (e.g., when user information is stored based on pseudonymous online identifiers, also referred to as 'user IDs').
The following types of cookies and functions are distinguished:
Legal basis information: The legal basis for processing your personal data using cookies depends on whether we ask for your consent. If this is the case and you consent to the use of cookies, the legal basis for processing your data is the declared consent. Otherwise, the data processed using cookies are based on our legitimate interests (e.g., in the commercial operation and improvement of our online service) or, if the use of cookies is necessary, to fulfill our contractual obligations.
Storage duration: Unless we provide you with explicit information on the storage duration of persistent cookies (e.g., as part of a cookie opt-in), please assume that the storage duration can be up to two years.
General information on revocation and objection (opt-out): Depending on whether the processing is based on consent or legal permission, you have the option to revoke your consent or object to the processing of your data using cookie technologies (collectively referred to as 'opt-out'). You can initially declare your objection by adjusting the settings of your browser, for example, by disabling the use of cookies (which may also restrict the functionality of our online offering). An objection to the use of cookies for online marketing purposes can also be made through various services, especially in the case of tracking, via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/. In addition, you can obtain further information on objections within the scope of the information provided about the service providers and cookies used.
In order to provide our online offering securely and efficiently, we use the services of one or more web hosting providers, from whose servers (or servers managed by them) the online offering can be accessed. For this purpose, we may use infrastructure and platform services, computing capacity, storage space and database services, as well as security services and technical maintenance services.
The data processed within the scope of providing the hosting services may include all information concerning the users of our online offering that arises in the course of use and communication. This regularly includes the IP address, which is necessary to deliver the contents of online offerings to the user's browser, and all inputs made within our online offering or on websites.
Email delivery and hosting: The web hosting services we use also include the sending, receiving, and storage of emails. For these purposes, the addresses of the recipients and senders, as well as further information regarding the email delivery (e.g., the providers involved) and the contents of the respective emails, are processed. The aforementioned data may also be processed for the purpose of detecting spam. Please note that emails are generally not encrypted when sent over the internet. Although emails are usually encrypted during transmission, they are not encrypted on the servers from which they are sent and received, unless an end-to-end encryption method is used. Therefore, we cannot assume any responsibility for the transmission path of emails between the sender and our server.
Collection of access data and log files: We ourselves (or our web hosting provider) collect data on every access to the server (so-called server log files). The server log files may include the address and name of the accessed web pages and files, the date and time of access, the amount of data transferred, a message about the successful retrieval, the browser type and version, the user's operating system, the referrer URL (the previously visited page), and, as a rule, IP addresses and the requesting provider.
The server log files can be used for security purposes, among other things, to prevent server overload (especially in the case of abusive attacks, so-called DDoS attacks) and to ensure the load capacity and stability of the servers.
Users can create a user account. In the course of registration, users will be informed of the necessary mandatory information and processed for the purpose of providing the user account based on contractual fulfillment. The processed data includes, in particular, the login information (username, password, and email address).
As part of the use of our registration and login functions as well as the use of the user account, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests as well as the users' interests in protection against misuse and other unauthorized use. In principle, this data will not be passed on to third parties unless it is necessary to pursue our claims or there is a legal obligation to do so.
Users can be informed by email about activities relevant to their user account, such as technical changes.
Registration with pseudonyms: Users are allowed to use pseudonyms as usernames instead of real names.
User profiles are public: The user profiles are publicly visible and accessible.
Two-factor authentication: Two-factor authentication provides an additional security layer for your user account, ensuring that only you can access your account even if someone else knows your password. For this purpose, you will need to perform an additional authentication measure in addition to your password (e.g., entering a code sent to a mobile device). We will inform you about the procedure we use.
Data deletion after termination: If users have terminated their user account, their data related to the user account will be deleted, subject to any legal permissions, obligations, or user consent.
It is the users' responsibility to secure their data prior to contract termination. We are entitled to irrevocably delete all user data stored during the term of the contract.
The community features provided by us allow users to engage in conversations or other exchanges with each other. Please note that the use of community features is only permitted in compliance with applicable laws, our terms and policies, and the rights of other users and third parties.
Visibility settings for posts: Users can determine, through settings, the extent to which their created posts and content are visible or accessible to the public, specific individuals, or groups.
Storage of data for security purposes: The users' posts and other inputs are processed for the purposes of community and conversation functions and, subject to legal obligations or permissions, are not disclosed to third parties. An obligation to disclose may arise, particularly in the case of illegal posts, for the purpose of legal enforcement. We would like to inform you that, in addition to the content of the posts, the timing and IP address of the users are also stored. This is done in order to be able to take appropriate measures to protect other users and the community.
Right to deletion: The deletion of posts, content, or user information is permissible to the extent necessary after a careful consideration, provided that there are specific indications that they constitute a violation of legal rules, our guidelines, or the rights of third parties.
Protection of Personal Data: Users decide for themselves which data they disclose about themselves within our online offering. For example, when users provide information about themselves or participate in conversations. We ask users to protect their data and to publish personal data only with caution and only to the extent necessary. In particular, we ask users to consider that they must protect their access data especially well and use secure passwords (i.e., primarily long and random combinations of characters).
We only send newsletters, emails, and other electronic notifications (hereinafter referred to as "newsletter") with the consent of the recipients or a legal permission. If the content of a newsletter is specifically described during registration for the newsletter, it is decisive for the user's consent. In addition, our newsletters contain information about our services and us.
To subscribe to our newsletters, it is generally sufficient to provide your email address. However, we may ask you to provide a name for personalized addressing in the newsletter or other information if it is necessary for the purposes of the newsletter.
Double Opt-In Process: The registration for our newsletter generally takes place using a so-called double opt-in process. This means that after registration, you will receive an email asking you to confirm your registration. This confirmation is necessary to prevent anyone from registering with someone else's email address. Newsletter registrations are logged to be able to provide evidence of the registration process in accordance with legal requirements. This includes storing the registration and confirmation timestamps as well as the IP address. Changes to your data stored by the mailing service provider are also logged.
Deletion and Restriction of Processing: We may store unsubscribed email addresses for up to three years based on our legitimate interests before deleting them in order to demonstrate a previously given consent. The processing of this data will be limited to the purpose of possible defense against claims. An individual request for deletion is possible at any time, provided that the former existence of consent is confirmed. In the case of obligations to permanently observe objections, we reserve the right to store the email address solely for this purpose on a blocklist.
The logging of the registration process is based on our legitimate interests for the purpose of verifying its proper course. If we engage a service provider for the dispatch of emails, this is done based on our legitimate interests in an efficient and secure mailing system.
Information on Legal Bases: The sending of newsletters is based on the consent of the recipients or, if consent is not required, on our legitimate interests in direct marketing, provided and to the extent that this is permitted by law, e.g., in the case of advertising to existing customers. If we engage a service provider for the dispatch of emails, this is done on the basis of our legitimate interests. The registration process is recorded based on our legitimate interests in order to demonstrate compliance with the law.
Contents: Information about us, our services, promotions, offers, and forum notifications.
We process personal data of participants in contests and competitions only in compliance with the applicable data protection regulations, to the extent that processing is contractually necessary for the provision, implementation, and handling of the contest, participants have consented to the processing, or processing serves our legitimate interests (e.g., the security of the contest or the protection of our interests against abuse by possible collection of IP addresses when submitting contest entries).
If participants' contributions are published as part of the contests (e.g., in the context of voting or presentation of contest entries or winners or reporting on the contest), we would like to point out that the names of the participants may also be published in this context. Participants can object to this at any time.
If the competition takes place within an online platform or a social network (e.g., Facebook or Instagram, hereinafter referred to as the 'online platform'), the terms of use and privacy policies of the respective platforms also apply. In these cases, we would like to point out that we are responsible for the information provided by participants in the context of the competition, and any inquiries regarding the competition should be directed to us.
The participants' data will be deleted as soon as the competition or contest has ended and the data is no longer necessary to inform the winners or to address any inquiries related to the competition. In general, participants' data will be deleted no later than 6 months after the end of the competition. Data of the winners may be retained for a longer period in order to answer questions regarding the prizes or fulfill the prize services. In such cases, the retention period depends on the nature of the prize and may, for example, be up to three years for goods or services in order to handle warranty claims. Furthermore, participants' data may be stored for a longer period, such as in the form of reporting on the competition in online and offline media.
If data has also been collected for other purposes within the competition, the processing and retention period are governed by the privacy notices for that specific use (e.g., in the case of newsletter subscriptions as part of a competition).
The surveys and questionnaires conducted by us (hereinafter referred to as 'surveys') are evaluated anonymously. Personal data is only processed to the extent necessary for the provision and technical execution of the surveys (e.g., processing the IP address to display the survey in the user's browser or using a temporary cookie (session cookie) to allow the resumption of the survey), or if users have given their consent.
Notes on legal bases: If we ask participants for consent to process their data, this serves as the legal basis for processing. Otherwise, the processing of participants' data is based on our legitimate interests in conducting an objective survey.
Web analytics (also referred to as 'reach measurement') is used to evaluate the visitor traffic of our online offering and may include pseudonymous values regarding the behavior, interests, or demographic information of visitors, such as age or gender. With the help of reach analysis, we can, for example, determine the times when our online offering or its features or content are most frequently used or invite reuse. We can also track which areas require optimization.
In addition to web analytics, we may also use testing procedures to test and optimize different versions of our online offering or its components, for example.
For these purposes, so-called user profiles may be created and stored in a file (known as a "cookie") or similar methods with the same purpose may be used. This information may include viewed content, visited websites, elements used on those websites, and technical details such as the browser used, the operating system, and information about usage times. If users have consented to the collection of their location data, these may also be processed depending on the provider.
The IP addresses of the users are also stored. However, we use an IP masking procedure (i.e., pseudonymization by shortening the IP address) to protect the users. Generally, no personally identifiable information of the users (such as email addresses or names) is stored in the context of web analytics, A/B testing, and optimization, but pseudonyms are used. This means that neither we nor the providers of the software used know the actual identity of the users, only the information stored in their profiles for the purposes of the respective procedures.
Legal basis: If we ask users for their consent to the use of third-party providers, the legal basis for data processing is consent. Otherwise, the users' data is processed based on our legitimate interests (i.e., interest in efficient, economical, and user-friendly services). In this context, we also refer you to the information on the use of cookies in this privacy policy.
Services and service providers used:
We process personal data for the purposes of online marketing, which may include the marketing of advertising space or the display of advertising and other content (collectively referred to as "content") based on potential user interests, as well as measuring their effectiveness.
For these purposes, user profiles are created and stored in a file (known as a "cookie") or similar methods are used to store relevant user information for the display of the aforementioned content. This information may include viewed content, visited websites, online networks used, as well as communication partners and technical details such as the browser used, the operating system, and information about usage times. If users have consented to the collection of their location data, these may also be processed.
The IP addresses of the users are also stored. However, we use IP masking procedures (i.e., pseudonymization by shortening the IP address) to protect the users. Generally, no personally identifiable information of the users (such as email addresses or names) is stored in the context of online marketing procedures, but pseudonyms are used. This means that neither we nor the providers of the online marketing procedures know the actual identity of the users, only the information stored in their profiles.
The information in the profiles is typically stored in cookies or similar methods. These cookies can also be read on other websites that use the same online marketing procedures, and they can be analyzed for the purpose of displaying content, supplemented with additional data, and stored on the server of the online marketing provider.
In exceptional cases, identifiable data can be associated with the profiles. This is the case, for example, when users are members of a social network that we use for online marketing, and the network connects the user profiles with the aforementioned information. Please note that users may have additional agreements with the providers, such as through consent during registration.
We generally only have access to aggregated information about the success of our advertisements. However, we may conduct conversion measurements to determine which of our online marketing procedures led to a conversion, such as entering into a contract with us. Conversion measurement is solely used for analyzing the success of our marketing efforts.
Unless otherwise stated, please assume that the cookies used will be stored for a period of two years.
Legal basis: If we ask users for their consent to the use of third-party providers, the legal basis for data processing is consent. Otherwise, user data is processed based on our legitimate interests (i.e., interest in efficient, economic, and user-friendly services). In this context, we also refer you to the information on the use of cookies in this privacy policy.
We maintain online presences within social networks and process user data in this context to communicate with the users active there or to provide information about us.
We would like to point out that user data may be processed outside the European Union. This may result in risks for users, as, for example, the enforcement of user rights could be more difficult.
Furthermore, user data within social networks is usually processed for market research and advertising purposes. For example, usage profiles can be created based on user behavior and resulting interests. These usage profiles can in turn be used to display advertisements within and outside the networks that presumably correspond to the users' interests. Cookies are usually stored on users' computers for these purposes, in which user behavior and interests are stored. Furthermore, data may also be stored in the usage profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).
For a detailed description of the respective processing methods and opt-out options, please refer to the privacy policies and information provided by the operators of the respective networks.
In the case of inquiries regarding information and the exercise of data subject rights, we would like to point out that these are most effectively addressed directly to the providers. Only the providers have access to the users' data and can take appropriate measures and provide information directly. If you still need assistance, you can contact us.
Facebook: We are jointly responsible with Facebook Ireland Ltd. for the collection (but not further processing) of data from visitors to our Facebook page (so-called "fan page"). This data includes information about the types of content users view or interact with, or actions they take (see "Things You and Others Do and Provide" in the Facebook Data Policy: https://www.facebook.com/policy), as well as information about the devices users use (e.g., IP addresses, operating systems, browser types, language settings, cookie data; see "Device Information" in the Facebook Data Policy Statement: https://www.facebook.com/policy). As explained in the Facebook Data Policy under "How We Use This Information," Facebook also collects and uses information to provide analytics services, known as "Page Insights," to page operators, so that they can gain insights into how people interact with their pages and associated content. We have entered into a special agreement with Facebook ("Information about Page Insights," https://www.facebook.com/legal/terms/page_controller_addendum) that specifies the security measures Facebook must observe and in which Facebook has agreed to fulfill the data subject rights (i.e., users can address inquiries or deletion requests directly to Facebook). The rights of users (particularly with regard to access, deletion, objection, and complaint to the competent supervisory authority) are not limited by the agreements with Facebook. Further information can be found in the "Information about Page Insights" (https://www.facebook.com/legal/terms/information_about_page_insights_data).
Services and service providers used:
We integrate functional and content elements into our online offering that are obtained from the servers of their respective providers (referred to as "third-party providers" below). This may include, for example, graphics, videos, or maps (hereinafter uniformly referred to as "content").
The integration always requires that the third-party providers of this content process users' IP addresses, as they would not be able to send the content to their browsers without the IP address. The IP address is therefore necessary for the presentation of this content or functions. We make every effort to use only content whose respective providers use the IP address solely for the purpose of delivering the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on users' devices and may include technical information about the browser and operating system, referring web pages, visit times, and other information about the use of our online offering, as well as be linked to such information from other sources.
Information about legal bases: If we ask users for their consent to the use of third-party providers, the legal basis for data processing is consent. Otherwise, users' data is processed based on our legitimate interests (i.e., interest in efficient, economic, and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.
Facebook Plugins and Content: We are jointly responsible with Facebook Ireland Ltd. for the collection or receipt, but not the further processing, of 'event data' collected by Facebook through Facebook social plugins (and embedding functions for content) executed on our online platform, for the following purposes: a) displaying content and advertising information that corresponds to the presumed interests of the users; b) delivering commercial and transactional messages (e.g., addressing users via Facebook Messenger); c) improving ad delivery and personalizing features and content (e.g., enhancing the detection of content or advertising information that presumably corresponds to the interests of users). We have entered into a specific agreement with Facebook ("Controller Addendum," https://www.facebook.com/legal/controller_addendum), which governs, in particular, the security measures Facebook must comply with (https://www.facebook.com/legal/terms/data_security_terms), and wherein Facebook has committed to fulfilling the rights of data subjects (i.e., users can directly address Facebook for inquiries or deletion requests). Note: If Facebook provides us with metrics, analyses, and reports (which are aggregated, meaning they do not contain information about individual users and are anonymized for us), this processing does not fall within the scope of joint responsibility but is based on a data processing agreement ("Data Processing Terms," https://www.facebook.com/legal/terms/dataprocessing), the "Data Security Terms" (https://www.facebook.com/legal/terms/data_security_terms), and, with regard to processing in the United States, on the basis of standard contractual clauses ("Facebook EU Data Transfer Addendum," https://www.facebook.com/legal/EU_data_transfer_addendum). The rights of users (especially regarding access, deletion, objection, and complaints to the competent supervisory authority) are not restricted by the agreements with Facebook.
Instagram Plugins and Content: We are jointly responsible with Facebook Ireland Ltd. for the collection or receipt, but not the further processing, of 'event data' collected by Facebook through Instagram functions (e.g., embedding functions for content) executed on our online platform, for the following purposes: a) displaying content and advertising information that corresponds to the presumed interests of the users; b) delivering commercial and transactional messages (e.g., addressing users via Facebook Messenger); c) improving ad delivery and personalizing features and content (e.g., enhancing the detection of content or advertising information that presumably corresponds to the interests of users). We have entered into a specific agreement with Facebook ("Controller Addendum," https://www.facebook.com/legal/controller_addendum), which governs, in particular, the security measures Facebook must comply with (https://www.facebook.com/legal/terms/data_security_terms), and wherein Facebook has committed to fulfilling the rights of data subjects (i.e., users can directly address Facebook for inquiries or deletion requests). Note: If Facebook provides us with metrics, analyses, and reports (which are aggregated, meaning they do not contain information about individual users and are anonymized for us), this processing does not fall within the scope of joint responsibility but is based on a data processing agreement ("Data Processing Terms," https://www.facebook.com/legal/terms/dataprocessing), the "Data Security Terms" (https://www.facebook.com/legal/terms/data_security_terms), and, with regard to processing in the United States, on the basis of standard contractual clauses ("Facebook EU Data Transfer Addendum," https://www.facebook.com/legal/EU_data_transfer_addendum). The rights of users (especially regarding access, deletion, objection, and complaints to the competent supervisory authority) are not restricted by the agreements with Facebook.
Used services and service providers:
The data processed by us will be deleted in accordance with the statutory provisions as soon as the consents allowing their processing are revoked or other permissions cease to apply (e.g., if the purpose of processing this data no longer exists or they are not necessary for the purpose anymore).
Unless the data is deleted because it is necessary for other purposes permitted by law, its processing will be restricted to those purposes. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons, or whose storage is necessary for the assertion, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person.
Our privacy policy may also include further information regarding the storage and deletion of data that takes precedence over the respective processing activities.
We kindly ask you to regularly inform yourself about the content of our privacy policy. We will adapt the privacy policy as soon as changes to the data processing carried out by us make this necessary. We will inform you as soon as the changes require your cooperation (e.g., consent) or any other individual notification.
If we provide addresses and contact information of companies and organizations in this privacy policy, please note that these addresses may change over time, and we kindly ask you to verify the information before contacting them.
As a data subject, you have various rights under the GDPR, which are particularly derived from Articles 15 to 21 of the GDPR:
This section provides an overview of the terminologies used in this privacy policy. Many of these terms are derived from the law and are primarily defined in Article 4 of the General Data Protection Regulation (GDPR). The legal definitions are binding, while the following explanations are primarily intended to aid understanding. The terms are sorted alphabetically.
Generated with the free Privacy Policy Generator by Dr. Thomas Schwenke