Why is Maggi number one in pasta

Website data protection declaration and at the same time information for those affected in accordance with Article 13 and Article 14 of the EU General Data Protection Regulation (GDPR)


Data protection is very important to flaschenpost. When collecting, processing and using customer and order data, we strictly adhere to the statutory provisions of the European General Data Protection Regulation (GDPR), the Federal Data Protection Act-new (BDSG-New) and Telemedia Act (TMG), the latter if still applicable.

Since changes in the law or changes to our internal company processes may make it necessary to adapt this data protection declaration, we ask you to read this data protection declaration regularly. The data protection declaration can be called up, saved and printed out at any time under “Data protection declaration” on our website.

A. General information:

Information from the responsible body and service provider:
Companies:flaschenpost SE (hereinafter also referred to as "flaschenpost")
Legal representatives: Dr. Stephen Weich (Chairman of the Board),
Christopher Huesmann,
Julian Pachta,
Niklas Plath
Address:Sentmaringer Weg 21, 48151 Münster
Register court and no .:District court Münster HRB 17773
Contact data data protection officer: Sentmaringer Weg 21, 48151 Münster,
Mail: [email protected]

General data processing information

Affected data:

Personal data (According to Art. 4 Paragraph 1 GDPR, this is all information that relates to an identified or identifiable natural person (hereinafter referred to as the "data subject"); a natural person is regarded as identifiable who, directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier or one or more special features that express the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person) are only collected if you inform us of this of your own accord. In addition, no personal data is collected. Any processing of your personal data beyond the scope of the statutory permissions will only take place on the basis of your express consent.

Processing purpose:Contract preparation and execution, application management, safeguarding our predominant legitimate interests.
Categories of recipients: Public bodies in the event of overriding legal provisions.

External service providers or other contractors.

Other external bodies as far as the data subject has given his consent or a transmission is permitted due to an overriding interest.

Third country transfers:Processors outside the European Union can also be used as part of the performance of the contract.
Duration of data storage:The duration of the data storage is based on the statutory retention requirements and is usually 10 years.

General rights of those affected

As a data subject, you have the right

  • for information on the personal data stored about you, Art. 15 GDPR;
  • to correct incorrect or incomplete data, Art. 16 GDPR;
  • on deletion of personal data, Art. 17 GDPR;
  • to restriction of processing, Art. 18 GDPR;
  • on data portability, Art. 20 GDPR, and
  • to object to the processing of your personal data, Art. 21 GDPR.

To exercise these rights, you can contact us at any time - e.g. via one of the contact channels specified at the beginning of this data protection information.

If you have any questions about the processing of your data, you can also contact our data protection officer.

You are also entitled to lodge a complaint with a competent supervisory authority for data protection, Art. 77 GDPR. The responsible supervisory authority for flaschenpost is the "State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia" (LDI-NRW), Düsseldorf.

B. Specific information about the website:

The following information on data protection applies to the use of the flaschenpost SE website, Sentmaringer Weg 21, 48151 Münster, under the top-level domain www.flaschenpost.de, including the protected online shop areas that require registration and registration, as well as for everyone to the Top -Level-Domain associated sub-domains

In this specific information on data protection for the use of our website, we explain which information (including personal data) will be processed by us during your visit and your use of our aforementioned website ("website").

Which principles do we observe?

In compliance with data protection regulations, we only process your personal data if a legal provision allows us to do so, if you have given your consent or if we have a legitimate overriding interest in such processing. This also applies to the processing of personal data for advertising and marketing purposes.

On this website we can also collect information that, taken by itself, does not allow us to draw any direct conclusions about your person. In certain cases - especially when combined with other data - this information can nonetheless be regarded as "personal data" in the sense of data protection law. Furthermore, we can also collect such information on this website, on the basis of which we can neither directly nor indirectly identify you; This is the case, for example, with summarized information (e.g. for statistical purposes) about all users of this website.

Which data do we process?

You can access our website without providing any personal data (such as your name, postal address or email address). In this case, too, we have to collect and save certain information in order to enable you to access our website and to make it available to you for use in a legally secure manner. In addition, we use certain analysis methods on this website.

1. Log files:

When you visit this website, the web server we use automatically saves the domain name or the IP address of the requesting computer (usually your Internet access provider) including the date, time and duration of your visit, the sub-pages / URLs that you visit and information about the applications and devices you use to view our pages.

2. Order process

You can carry out the ordering process by creating a customer account in our online shop as part of your first ordering process. To do this, we collect and process the following personal data from you:

The customer and order data necessary for the business transaction are processed and stored exclusively for the processing of the order process. We need your e-mail address, for example, to inform you about the receipt and dispatch of your orders and to be able to communicate with you quickly. In addition, your e-mail address and your telephone number will only be used for our own advertising purposes. You can object to this use by activating the corresponding objection link in the e-mail sent to you for your own advertising purposes.

So that you do not have to re-enter this data when you make another purchase, we will create an individual user account for you with your email address and a password that you have individually assigned. You can of course change this password in your customer account at any time. We only save your password in a cryptographically protected manner. Your data will be stored by us until you have caused us to delete this data. In individual cases, further storage can take place for a specific purpose if this is required by law.

3. Newsletter

On our website you have the opportunity to be informed about offers and promotions from flaschenpost in a newsletter. If you would like to receive the newsletter we offer, we need a valid email address from you. In order to be able to check whether you are the owner of the specified email address or whether the owner agrees to receive the newsletter, we will send an automated email to the specified email address after the first registration step. Only after confirmation of the newsletter registration via a link in the confirmation e-mail will we add the specified e-mail address to our mailing list. We do not collect any further data beyond the e-mail address and the details to confirm the registration. You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time with effect for the future.
With your consent, the data collected by us during the ordering process will be used to send you this newsletter by email. When you subscribe to the newsletter, your email address will be used for our own advertising purposes until you have received the newsletter via the Unsubscribe from the link at the end of the newsletter email.

4. Cookies:

We use cookies to make your visit to our website as pleasant as possible. Cookies are small text files that are stored on your hard drive by a web server. Cookies contain information that can later be read by a web server in the domain in which the cookie was issued to you. Cookies cannot run programs or place viruses on your computer. The cookies we use do not contain any personal information, but can be merged with such in a pseudonymised form. Cookies support the use of functions such as the shopping cart and make it easier for you to use, for example certain entries do not have to be repeated. Accepting cookies is not a prerequisite for visiting our website. Switching off all cookies can mean that some functions, such as the shopping cart, can no longer be carried out on our website. Most of the cookies we use are deleted at the end of the browser session (so-called session cookies). Other cookies remain on your computer longer (so-called temporary cookies); they are also automatically deleted after they have expired, a maximum of 5 years. No security-relevant data is stored in the cookies. In addition, no personal data is stored in the cookies used by flaschenpost. When a cookie is activated, it only receives an identification number. With the help of cookie technology, we only receive anonymized information, for example about which pages of our website have been visited, etc.
In order to object to the use of cookies on your computer in general, you can set your internet browser so that cookies can no longer be stored on your computer in the future or cookies that have already been stored are deleted. You can also deactivate the use of cookies by third-party providers such as Google on the Digital Advertising Alliance website http://optout.aboutads.info/.

5. Re-Marketing / Targeting

We use re-marketing / targeting to make offers on the Internet more meaningful for Internet users. With re-marketing / targeting it is possible for us to address internet users who have already visited our website and are interested in our offers with our advertising on the websites of our partners. We use cookies for this. These small text files are stored on your computer by Google and Facebook. With the help of the text files, your user behavior when visiting the website can be analyzed and then used for targeted product recommendations and interesting advertising. The advertising is displayed completely anonymously and at no time is personal data stored and usage profiles combined with personal data. You can object to the use of your data for targeted advertising on Google at https://adssettings.google.com/authenticated?hl=de. For all other providers we use, you will find a corresponding opt-out link in the following paragraphs.

6. Facebook Custom Audience

We also use the “Facebook pixel” from Facebook Inc. 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”) on our website. In this way, the behavior of users can be tracked after they have seen or clicked on a Facebook advertisement. This procedure is used to evaluate the effectiveness of Facebook advertisements for statistical and market research purposes and can help to optimize advertising measures. The data collected is anonymous to us, so it does not allow us to draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes in accordance with the Facebook data usage guidelines. You can enable Facebook and its partners to place advertisements on and outside of Facebook. A cookie can also be stored on your computer for these purposes. You can find more information on this, as well as the option to set an opt-out cookie, at https://www.facebook.com/privacy/explanation.
You can completely deactivate the use of cookies by Facebook with a program specially developed by us for this case (web-based opt-out procedure). All you need to do is confirm the link below. By confirming the opt-out link, an opt-out cookie is set which prevents the future collection of your data when you visit this website with the browser you are currently using on this device. If you delete your cookies, you have to set the opt-out cookie again: deactivate cookies through Facebook.

7. Google Universal Analytics

This website uses Google Universal Analytics, a web analysis service from Google Inc. (Google). Google Universal Analytics uses cookies for this. The information stored in the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. If IP anonymization (so-called IP masking) is activated on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The full IP address will only be sent to a Google server in the USA and shortened there in exceptional cases. IP anonymization is active on this website.On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You can find more information on this at https://www.google.com/intl/de/analytics/privacyoverview.html (general information on Google Analytics and data protection). You can also deactivate Google Universal Analytics here https://tools.google.com/dlpage/gaoptout. This deactivation prevents the future collection of your data when you visit this website with the browser currently used on this device. You must carry out this opt-out on all systems that you use, for example in another browser or on your mobile device.
The use of Google Universal Analytics takes place in accordance with the requirements that the German data protection authorities agreed with Google. Third party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
Terms of use: http://www.google.com/analytics/terms/de.html,
Overview of data protection: http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the
Data protection declaration: http://www.google.de/intl/de/policies/privacy

8. Google Tag Manager

This website also uses Google Tag Manager from Google Inc. (Google). With the Google Tag Manager we can manage website tags via an interface. The Tag Manager only triggers other tags, which in turn may collect data. Corresponding explanations for these respective third party providers can be found in this data protection declaration. The Google Tag Manager only uses this data for forwarding.

9. SalesViewer® technology

This website uses the SalesViewer® technology from SalesViewer® GmbH to collect and save data for marketing, market research and optimization purposes on the basis of the website operator's legitimate interests (Art. 6 (1) (f) GDPR).
A JavaScript-based code is used for this purpose, which is used to collect and use company-related data. The data collected with this technology is encrypted using a non-recalculable one-way function (so-called hashing). The data is immediately pseudonymised and not used to personally identify the visitor to this website.

The collection and storage of data can be objected to at any time with effect for the future by clicking this link here on each of the devices you use, in each of the Brouser you use, in order to prevent future collection by SalesViewer® within this website. An opt-out cookie for this website is stored on your device. If you delete your cookies in this browser, you will have to click this link again.

10. LinkedIn Analytics and LinkedIn Ads

We also use the retargeting function of the LinkedIn Corporation on our website. By using this technology, visitors to this website can be shown personalized advertisements on LinkedIn. It is also possible to generate anonymous reports on the performance of the advertisements and information on website interaction. The LinkedIn Insight Tag is integrated into this website for this purpose. This establishes a connection to the LinkedIn server when you visit this website and are also logged into your LinkedIn account at the same time. In addition, LinkedIn uses two types of cookies: persistent cookies and session cookies. A permanent cookie enables LinkedIn to recognize you as a member. This makes it easier for you to return to LinkedIn and interact with LinkedIn services without having to log back in to LinkedIn. After logging in to LinkedIn, a permanent cookie remains in your browser and is read by LinkedIn when you return to a LinkedIn website or a partner website that uses LinkedIn services, e.g. our website. Session cookies are only valid for the respective session (usually the current visit to a website or a browser session).
In the data protection guideline of LinkedIn at https://www.linkedin.com/legal/privacy-policy you can find further information on the use of cookies, data collection and data use as well as the possibilities and rights to protect your privacy. If you are logged in to LinkedIn, you can deactivate the data collection at any time under the following link: https://www.linkedin.com/psettings/enhanced-advertising.

11. Zendesk CRM system

We use the CRM system "Zendesk" from the provider Zendesk, Inc., 989 Market Street # 300, San Francisco, CA 94102, USA, in order to be able to process user inquiries faster and more efficiently (legitimate interest according to Art. 6 Para. 1 lit.f.DS-GVO). Zendesk is certified under the Privacy Shield Agreement and thus offers an additional guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TOjeAAG&status=Active). In addition, we have agreed to comply with the EU standard data protection clauses (SCC) with Zendesk. In addition, we have booked the additional service "Location of the data center used" at Zendesk in order to be able to ensure that your data is only stored and processed on servers in EU countries.
Zendesk uses cookies that enable us to track your use of our website for statistical and evaluation purposes. The information generated by cookies about the use of this website is transmitted to a Zendesk server and stored there. Communication carried out using the Zendesk software is only logged and stored on servers within the EU. You can prevent the installation of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of our website to their full extent. Further information can be found in Zendesk's data protection declaration: https://www.zendesk.de/company/customers-partners/privacy-policy/.

Legal basis for the data processing operations

The collection and use of personal data of our users takes place regularly only with the consent of the user. Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6 (1) (a) GDPR serves as the legal basis for the processing of personal data.

An exception applies in those cases in which prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.

When processing personal data that is required to fulfill a contract to which the data subject is a party, Article 6 (1) (b) GDPR serves as the legal basis. This also applies to processing operations that are required to carry out pre-contractual measures.

Insofar as the processing of personal data is necessary to fulfill a legal obligation to which we are subject, Article 6 (1) (c) GDPR serves as the legal basis. If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the person concerned do not outweigh the first-mentioned interest, Art. 6 (1) (f) GDPR serves as the legal basis for the processing.

If necessary, we process your data beyond the aforementioned purposes also to safeguard our legitimate interests or the interests of third parties; this is done on the basis of Article 6 Paragraph 1 f GDPR. Our legitimate interests include in particular

Security measures to protect the data stored by us

The security of your data is our top priority. That is why we generally only work with encrypted websites. This means that we encrypt all data (personal and impersonal) using the SSL (Secure Socket Layer) method. You can recognize the encryption by the lock symbol in the browser and by the "https: //" in the address bar of your browser.

Hyperlinks to other websites

Our website contains so-called hyperlinks to websites of other providers. If you activate these hyperlinks, you will be redirected from our website directly to the website of the other provider. You can recognize this by the change in the URL, among other things. We cannot assume any responsibility for the confidential handling of your data on these third-party websites, as we have no influence on whether these companies comply with data protection regulations. Please refer to these websites for information about how these companies handle your personal data.

contact form

If you send us inquiries using the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing your request and in case of follow-up questions. We use the Zendesk CRM system for this. In this regard, we refer at this point to our information on the CRM system we use.

Use of social plugins

Our websites also have plug-ins from the social networks "Facebook" (Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA) and Instagram (provided by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland) included.
These are operated exclusively by the respective provider. The plug-ins are identified as part of our online presence by the respective button belonging to the service. When you visit a subpage of our website that contains such a plug-in, your browser establishes a connection with the servers of the respective service, which in turn transmits the content of the plug-in to your browser and integrates it into the displayed page. In this way, the information about the visit to our website is forwarded to the respective service. If you are logged in to the respective service via your personal user account at the same time during your visit to our website (e.g. via another browser session), this can assign the visit to our website to your account. With the help of the plugins, users can share or post links to corresponding websites in social networks or recommend the content there. Through your active interaction with these plug-ins, e.g. by clicking the respective button or leaving a comment, this corresponding information is transmitted directly to the respective service and stored there.
If you want to prevent such data transmission, you must log out of your user account for the respective service before visiting our website. The scope and purpose of the data collection by the respective service as well as the further processing and use of your data there can be found in the data protection information directly from the website of the service (www.facebook.com/about/privacy/; and https: //help.instagram. com / 519522125107875). There you will also find further information about your corresponding data protection rights and setting options to protect your privacy.

Use of service providers for the processing of personal data / processing of data in countries outside the European Economic Area

If we use service providers to provide services and to process your data relating to our services and products, these service providers process the data exclusively within the scope of our instructions and are obliged to comply with the applicable data protection regulations. All processors have been carefully selected and only receive access to your data to the extent and for the period required to provide the services or to the extent to which you have consented to the data processing and use.
If the transmitted information also includes personal data, we ensure before such transmission that the required appropriate level of data protection is guaranteed in the respective third country or for the recipient in the third country. This can result in particular from a so-called "adequacy decision" of the European Commission, with which an adequate level of data protection for a certain third country is determined overall. Alternatively, we can base the data transfer on the so-called "EU standard contractual clauses" agreed with a recipient or - in the case of recipients in the USA - on compliance with the principles of the so-called "EU-US Privacy Shield". We will be happy to provide you with further information on suitable and appropriate guarantees for maintaining an appropriate level of data protection on request; You will find the contact details at the beginning of this data protection information. Information on the participants in the EU-US Privacy Shield can also be found here.
We can also transfer your personal data to third parties outside of our company to the extent permitted by law. These external recipients can include in particular

Storage period

We only store your personal data for as long as this is permitted by law. Stored personal data is deleted if the user revokes his consent to storage or if knowledge of this data is no longer necessary to fulfill the purpose for which it was stored, in particular if the user account is deleted or if its storage is inadmissible for other legal reasons is. Relevant statutory retention periods from the Commercial Code or the Tax Code remain unaffected. During the statutory retention period, your personal data will be blocked and will not be used for any other data processing.
Usually be

Automated decision making

The only automated decision-making concerns the question of whether an order can be paid for by direct debit or whether PayPal or credit card can only be offered as a payment method. To answer the question, simply search the customer's order history for open invoices. The open invoice must reach a fixed threshold in order to even make such a decision.

In connection with the operation of our website, we generally do not use any further automated decision-making (including profiling) within the meaning of Art. 22 GDPR. If we use such procedures in individual cases, we will inform you of this separately to the extent legally stipulated.

C. Information on further data processing methods

I. Specific information on the application process
Affected data:Applicant data
Processing purpose:Implementation of the application process
Categories of recipients:

Public bodies in the event of overriding legal provisions.

External service providers or other contractors, e.g. for data processing and hosting.

Other external bodies as far as the data subject has given his consent or a transmission is permitted due to an overriding interest.

Third country transfers: As part of the application process, processors outside the European Union can also be used. We currently use software from Greenhouse Software, Inc. ("Greenhouse"), 18 West 18th Street, 9th floor New York, NY 10011 USA. Greenhouse is certified under the Privacy Shield Agreement and thus offers an additional guarantee to comply with European data protection law. A current certificate from the EU-US Privacy Shield List can be viewed here. If you use our contact form as part of your application process, the CRM software we use will be used. Information about this software can be found here
Duration of data storage: Application data will usually be deleted within 7 months after notification of the decision, unless consent has been given to longer data storage in the context of inclusion in the applicant pool.

Further detailed information on applicant management can be found at the following link: https://wirsindflaschenpost.de/datenschutz.

The legal basis for the processing of your personal data from your application documents is the declaration of consent you have given, Article 6 (1) (a), Article 88 GDPR in conjunction with Section 26 BDSG. In addition, we process your data for the purpose of carrying out pre-contractual measures in accordance with Art. 6 Para. 1 lit. b, Art 88 GDPR in conjunction with Section 26 BDSG.

Application via Facebook

We also give you the opportunity to find out about vacancies on our Facebook fan page (further information) and to send us your application directly via Facebook.

If you are interested in one of the positions we offer there, confirm the "Apply now" button and enter the required data in the mask provided. As part of this application process, we collect the following personal data from you:

No other personal data will be collected from you. All further information is voluntary. Facebook forwards your application to us and then sends you a confirmation email to your Facebook mailbox.

The processing as part of the application process via the Facebook Ireland Ltd. Is the legal basis of Article 6, Paragraph 1, Letter b, Article 88 GDPR in conjunction with Section 26 of the Federal Data Protection Act (BDSG). We process your data for the purpose of carrying out pre-contractual measures.

We expressly point out that Facebook Ltd., Ireland, also processes your data as joint controller in accordance with Art 26 GDPR. Information on data protection on Facebook can be found at https://www.facebook.com/privacy/explanation.

II. Specific information on the processing of employee data
Affected data:Data communicated for the execution of the contract; Any additional data for processing on the basis of your express consent.
Processing purpose:Execution of the contract within the framework of the employment relationship, the internship relationship, the working student relationship, the internship
Categories of recipients:

Public bodies in the event of priority legal provisions, including tax office, social security agency, professional association

External service providers or other contractors, e.g. for data processing and hosting, for payroll accounting, for travel expense accounting, for insurance benefits, for vehicle use, for using company social services such as sports

Third country transfers:no
Duration of data storage: The duration of the data storage is based on the statutory retention requirements and is usually 10 years.
Legal basis: Art. 6 Para. 1 lit. b, Art. 88 GDPR in conjunction with Section 26 BDSG

III. Specific information on the processing of supplier data
Affected data:Data communicated for the execution of the contract; Any additional data for processing on the basis of your express consent.
Processing purpose:Execution of contracts, including inquiries, purchasing, quality assurance
Categories of recipients:

Public bodies if there are priority legal provisions, including tax office, customs

External service providers or other contractors, e.g. for data processing and hosting, payment processing

Other external bodies as far as the data subject has given his consent or a transmission is permitted due to a predominant interest, e.g. for contract acquisition, for processing insurance benefits, for servicing contractual relationships, etc.

Third country transfers:no
Duration of data storage: The duration of the data storage is based on the statutory retention requirements and is usually 10 years.
Legal basis:Art. 6 para. 1 lit. b GDPR

IV. Specific information on our social media channels facebook and instagram

We are also represented online within social networks and platforms (facebook.com/flaschenpost.de and instagram.com/flaschenpost.de) in order to be able to communicate with you, as an active customer, interested party and user, and to inform you there about our services.

The European Court of Justice (ECJ) ruled in its judgment of June 5, 2018 that the operator of a Facebook page is jointly responsible with Facebook for the processing of personal data.

When you visit our Facebook page and / or our Instagram page, Facebook / Instagram collects further information and also uses cookies that are available on your PC. This information is used to provide us, as the operator of the Facebook / Instagram pages, with statistical information about the use of the Facebook / Instagram page. We are aware that user data is processed for the following purposes:

The data collected about you in this context will be processed by Facebook Ltd./ Instagram Inc. and may be transferred to countries outside the European Union. What information Facebook / Instagram receives and how it is used is described in general terms by Facebook / Instagram in its data usage guidelines. There you will also find information about contact options for Facebook / Instagram and the setting options for advertisements. The data usage guidelines for Facebook are available at the following link: http://de-de.facebook.com/about/privacy. You can find the complete data protection guidelines of Facebook here: https://de-de.facebook.com/full_data_use_policy. You can find Instagram's privacy policy at the following link: https://instagram.com/about/legal/privacy/.

The operation of our Facebook page and our Instagram page, including the processing of users' personal data, is based on our legitimate interests in providing up-to-date and supportive information and interaction options for and with our users and visitors in accordance with Art. 6 Para. 1 lit.f. GDPR. If the users are asked to consent to the data processing described above by the respective providers of the platforms, the legal basis for processing is Art. 6 Para. 1 lit. a., Art. 7 GDPR.

Also in the case of requests for information and the assertion of user rights, we point out that these should be asserted with the providers. Only the providers have access to the data of the users and can take appropriate measures and provide information directly.