Privacy Policy
General information
The following data protection declaration provides information about what data is collected when you visit the website (https://www.graltek.net) or any of its subdomains listed with at legal notice and what happens with your personal data.
The website operator alone or together with others decides on the purposes and means of processing personal data (e.g. names, contact details, etc.).
You can find the contact details in the "Responsible body" section of this data protection declaration.
For a detailed definition of "personal data" you can find out more in the GDPR Art. 4 No. 1.
Data protection
The operators of these websites take the protection of your personal data very seriously.
We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
A variety of personal information will be collected when using this website.
Personal data comprises data which can be used to personally identify you.
This privacy policy explains what data is collected and what we use it for. It also explains how and for which purpose this happens.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
Revocation of your consent to the processing of your data
Some data processing operations are only possible with your express consent.
You can revoke your consent that you have already given at any time.
An informal message by e-mail is sufficient for the revocation.
This shall be without prejudice to the lawfulness of any data collection that occurred prior to your revocation.
Right to file complaints with the competent supervisory authority
As a data subject, you have the right to file a complaint with the competent supervisory authority in the event of a breach of data protection law.
The competent supervisory authority with regard to data protection issues is the state data protection officer of the federal state in which our company is based.
The following link provides a list of data protection officers and their contact details:
https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
Right to data portability
You have the right to have data, that we process automatically on the basis of your consent or in fulfillment of a contract, handed over to you or a third party.
It will be provided in a machine-readable format.
Should you demand the direct transfer of the data to another controller, this will be done only if it is technically feasible.
Information about, rectification, restriction and erasure of data
You have, within the scope of the applicable statutory provisions, at any time the right to demand information about your stored personal data,
the origin of the data, its recipient and the purpose of the data processing and, if necessary, the right of rectification, access restriction or erasure of this data.
You can contact us at any time using the contact options listed in the legal notice if you have any further questions on the subject of personal data.
SSL and/or TLS encryption
For security reasons and to protect the transmission of confidential content that you send to us as the site operator, our website uses SSL or TLS encryption.
This means that data that you transmit via this website cannot be read by third parties.
You can recognize an encrypted connection by the "https://" address line of your browser and by the lock symbol in the browser line.
Responsible body
Naming of the responsible body for data processing on the website (https://www.graltek.net) and it's subdomains:
Michael Patron
Neuer Weg 51
56567 Neuwied
Germany
E-Mail: contact@graltek.net
Hosting / General Data Collection
Our websites are hosted by an external service provider (hoster).
This is necessary to display our website and to ensure stability and security.
The use of the hoster is based on our legitimate interests of safe, fast and efficient provision of our online offer by a professional provider (Art. 6 sec. 1 lit. f GDPR).
We use the following hoster to make our website available:
lima-city is a venture TrafficPlex GmbH
TrafficPlex GmbH
Konsul-Smidt-Str. 90
28217 Bremen
Germany
https://www.lima-city.de
This is the recipient of your personal data and works for us as a processor. The server location is Germany, Frankfurt am Main.
By visiting the website, a range of data is automatically processed and stored in server log files.
The potentially processed information include the IP address, the visited page on our domain, browser type and browser version, the referrer URL, the date and time of the server request, the operating system used,
other similar data and information to prevent attacks on our websites and the server infrastructure and a unique ID of the access is created by the hoster.
Data is collected in accordance with Art. 6 sec. 1 lit. f GDPR in conjunction with Article 28 for security purposes (e.g. detection of DDoS attacks, access control, detection of brute force attacks).
The log data is kept for 7 days at the time of writing of this privacy policy.
The website operator does not link this data with other data sources.
For more information on lima-City's privacy policy, visit:
https://www.lima-city.de/hilfe/welche-daten-speichert-lima-city-von-webseitenbesuchern
We have concluded a commissioned data processing agreement with lima-City to ensure data protection-compliant processing.
Contact form and e-mail
Data transmitted via the contact form or e-mail, including your contact details, will be stored in order to be able to process your request or to be available for follow-up questions.
This data will not be shared with third parties without your consent.
The processing of the data entered in the contact form or e-mail takes place exclusively on the basis of your consent (Art. 6 sec. 1 lit. a GDPR).
You can revoke your consent that you have already given at any time.
An informal message by e-mail is sufficient for the revocation.
The legality of the data processing operations that took place up until the revocation remains unaffected by the revocation.
Data transmitted via the contact form or e-mail will remain with us until you ask us to delete it,
revoke your consent to storage or there is no longer a need for data storage.
Mandatory statutory directives - in particular retention periods - remain unaffected.
Local Storage
In order that the website can save the changes you have made for use, the website operator uses what is known as “local storage”.
This technique uses your browser's local cache to store data permanently on your device.
This data is retained even after the browser or window is closed, provided that neither you nor a browser setting or extension delete the cache.
Only the data required to operate the website is stored.
This data is only used locally on the device and only for this purpose.
Third parties cannot access this data and the data is not transmitted to the server or third parties.
We use this technology in our legitimate interest in order to be able to offer you full functionality on the basis of Art. 6 sec. 1 lit. f GDPR.
The following information is stored as local data:
- Created favorites and included details for the arc-calc and settlement helper
- All changes in the customization options (e.g. ingame-name, standard factor, custom names of great buildings)
If you do not want the local storage to be used, you can prevent this in the settings of your browser.
Depending on the browser, this is managed via the settings for "local data" or "history", but this results in functional restrictions on the site.
Cookies
For the duration of a session, a session ID is generated for anonymous statistical purposes.
Social media
Social networks can on principle analyze your user behavior to its full extent.
This applies in particular if you use the relevant networks to visit our social media sites.
Operators of these pages can then record your visit and assign it to your user account.
Under certain circumstances, for example via your IP address, browser details or through the use of cookies, it may also be recorded even though you are not logged in.
The data collected in this way can be used by the operators of social networks to create profiles.
Your preferences and interests can be recorded here, among other things, in order to display personalized advertising.
It is not possible for the website operator to track the data processing operations taking place within the social networks and also has no access rights to this data.
For more information, please refer to the data protection information of the respective portal.
Discord
We provide you with a common platform on which you can contact us and exchange ideas with other visitors.
To do this, we use a server on the platform based on the “Discord” software. We only use the openly accessible data to communicate with you.
Some of the content of this communication is used to solve user problems or to improve our website.
There is no further processing of the data by the operator of this website.
In all other cases in which data is processed in connection with our Discord server and for which Discord determines the means and purposes, the processing is carried out by Discord as the sole controller:
Discord Inc.
444 De Haro Street
San Francisco CA 94107
USA
If you reside in the European Economic Area or the United Kingdom, Discord Netherlands BV is the controller of your personal data.
Discord Netherlands BV has its registered office at Schiphol Boulevard 195 1118BG Schiphol, Amsterdam (NL) and is registered with the Dutch Chamber of Commerce under registration number 82229864.
In order to use Discord, registration on the service provider's platform is required.
When using Discord, data may be transmitted to servers in the USA.
You can access Discord's privacy policy at the following link:
https://discord.com/privacy
Use is on one's own free will - alternatively, you can also contact support via e-mail.
Processing takes place solely on the basis of user consent, both for data processing and for transmission to the USA, in accordance with Art. 6 sec. 1 lit. a GDPR, Art. 49 sec. 1 lit. a GDPR.
Additionally we use a Discord-bot for security reasons like spam protection.
To provide the desired functionality the bot needs, among other things, to monitor people joining the server,
read and analyze messages to be able to react to commands and violations and save those.
Further information can be found on the website of the bot at
https://mee6.xyz/
and their
privacy policy.
PayPal
On the websites, the payment service provided by PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg) is used.
This corresponds to our legitimate interest in offering an efficient and secure payment method (Art. 6 sec. 1 lit. f GDPR).
In this context, we pass on the following data to PayPal, insofar as it is necessary for the fulfillment of the contract (Art. 6 sec. 1 lit b. GDPR): First name, last name, address, e-mail address, phone number or other data which may be required for payment processing.
PayPal carries out a credit check for various services such as payment by direct debit in order to ensure your willingness and ability to pay.
This corresponds to PayPal's legitimate interest (according to Art. 6 sec. 1 lit. f GDPR) for the purpose of contract execution (according to Art. 6 sec. 1 lit. b GDPR).
Your data (name, address, date of birth and bank account details) will be passed on to credit agencies for this purpose.
We have no influence on this process and only receive the result of whether the payment was made, rejected or verification is pending.
You can find more information on how to object the processing and erasure of data at:
https://www.paypal.com/de/webapps/mpp/ua/privacy-full
Your data will be stored until the payment has been processed. This includes the time it takes to process refunds, claims management and fraud prevention.
Google AdSense
On our websites we use Google AdSense for advertisements.
This is a service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA ("Google").
In the European Economic Area and Switzerland, the service provider is Google Ireland Limited, incorporated and operated
under Irish law (registered number: 368047/VAT ID number: IE6388047V) Gordon House, Barrow Street, Dublin 4, Ireland.
If you agreed to it in the consent-menu upon visiting the page, AdSense will collect data.
By using Google AdSense, cookies (small text files that are stored in the browser on end devices) and web beacons
(small, sometimes invisible graphics that enable to monitor the activity of users at a website) are used.
The information obtained about website visitors (including the IP address) and their behavior can be passed on to Google
and its contractual partners. This enables the placement of advertisements tailored to the user.
The information collected may be transferred to third parties by Google if third parties process this data on behalf of
Google or if this is required by law.
This processing also serves our financial interest by displaying personalized advertising content for a fee.
The legal basis is Article 6 (1) (a) and Article 6 (1) (f) GDPR.
You can revoke your consent by clicking on the corresponding icon next to or below the advertisement.
By changing your cookie settings in the browser, corrsponding add-ons or deleting the cookies, you can also prevent the
use of cookies or delete existing ones.
This may have an impact on the functionality of the website.
Data protection notices, information on the use and handling of cookies and user-data as well as settings regarding the
use of your data can be found under the following links in particular:
https://policies.google.com/technologies/ads
https://policies.google.com/technologies/partner-sites
https://support.google.com/My-Ad-Center-Help/answer/12155764
https://policies.google.com/privacy
https://www.google.de/settings/ads