Data protection

Status: 18 February 2025

Content overview

Accountable person
Overview of processing operations
Relevant legal bases
Security measures
General information on data storage and deletion
Provision of the online offer and web hosting
Use of cookies
Blogs and publication media
Web analysis, monitoring and optimization
Affiliate Programs and Affiliate Links

Accountable person

SimplyWild LLC

3833 Powerline Road Suite 201
33309 Fort Lauderdale, Florida

E-mail address:

Imprint: https://unterwegs-in-der-welt.de/impressum/

Overview of processing operations

The following overview summarizes the types of data processed and the purposes of their processing and refers to the data subjects.

Types of data processed

Stock data.
Contact details.
Content data.
Contract data.
Use data.
Meta, communication and procedural data.
log data.

Categories of data subjects

interested parties.
Users.

Purposes of processing

security measures.
range measurement.
Affiliate tracking.
organisational and administrative procedures.
feedback.
Profiles with user-related information.
Provision of our online offer and user-friendliness.
Information technology infrastructure.

Relevant legal bases

Relevant legal bases according to the GDPR: In the following, you will find an overview of the legal bases of the GDPR, on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection requirements may apply in your or our country of residence or residence. If more specific legal bases are also relevant in individual cases, we will inform you of them in the data protection declaration.

Consent (Art. 6 para 1 s. 1 lit. a) DSGVO – The data subject has given his or her consent to the processing of personal data concerning him or her for a specific purpose or several specific purposes.
Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR – the processing is necessary to safeguard the legitimate interests of the controller or a third party, provided that the interests, fundamental rights and freedoms of the data subject that require the protection of personal data do not prevail.

Third country (outside the EU and Switzerland): The data protection regulations in the country of residence of the controller apply in addition to or in addition to the data protection regulations of the GDPR. These regulations may contain specific provisions that go beyond or deviate from the requirements of the GDPR. This includes, inter alia, rules on protection against misuse of personal data, rules on rights of access and deletion, rights of objection, processing of special categories of personal data, processing for other purposes, transmission and automated decision-making, including profiling.

Security measures

In accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, extent, circumstances and purposes of the processing, as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons, we take appropriate technical and organisational measures to ensure a level of protection appropriate to the risk.

Measures shall include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to, access to, input, disclosure, availability and segregation of data. We have also set up procedures to ensure the exercise of data subjects' rights, the deletion of data and the response to the threat to data. Furthermore, we already take into account the protection of personal data during development or Selection of hardware, software and procedures in accordance with the principle of data protection, technology design and data protection-friendly presets.

Securing online connections through TLS/SSL encryption technology (HTTPS): In order to protect the data of users transmitted via our online services from unauthorized access, we rely on TLS/SSL encryption technology. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) are the cornerstones of secure data transmission on the Internet. These technologies encrypt the information transmitted between the website or app and the user’s browser (or between two servers), thereby protecting the data from unauthorized access. TLS, as the more advanced and secure version of SSL, ensures that all data transfers meet the highest security standards. If a website is secured by an SSL/TLS certificate, this is signaled by displaying HTTPS in the URL. This serves as an indicator for users that their data is transmitted securely and encrypted.

General information on data storage and deletion

We delete personal data that we process in accordance with legal provisions as soon as the underlying consents are revoked or there are no further legal grounds for processing. This applies to cases in which the original processing purpose is eliminated or the data is no longer needed. Exceptions to this rule exist if legal obligations or special interests require a longer storage or archiving of the data.

In particular, data which must be kept for commercial or tax reasons or whose storage is necessary for legal proceedings or for the protection of the rights of other natural or legal persons must be archived accordingly.

Our privacy policy contains additional information about the storage and deletion of data that applies specifically to certain processing processes.

In the case of several information on the retention period or deletion periods of a date, the longest period is always decisive.

If a period does not explicitly start on a specific date and is at least one year, it shall start automatically at the end of the calendar year in which the time-initiating event occurred. In the case of ongoing contractual relationships in which data are stored, the time-triggering event is the time when the termination or other termination of the legal relationship takes effect.

Data that is no longer stored for the originally intended purpose, but due to legal requirements or other reasons, we process exclusively for the reasons that justify their storage.

Further information on processing processes, procedures and services:

Storage and deletion of data: The following general time limits apply to the storage and archiving under German law:
- 10 years – retention period for books and records, financial statements, inventories, management reports, opening balance sheet as well as the work instructions and other organisational documents required to understand them (§ 147 para. 1 No. 1 in conjunction with para 3 AO, § 14b para 1 UStG, § 257 para. 1 No. 1 in v.m. par. 4 HGB.
- 8 years – booking documents, such as invoices and cost documents (§ 147 para.) 1 No. 4 and 4a in accordance with para 3 sentence 1 AO and § 257 para. 1 No. 4 in conjunction with Abs. 4 HGB.
- 6 years - Other business documents: received commercial or business letters, reproductions of the sent commercial or business letters, other documents, insofar as they are important for taxation, e.g. hourly wage slips, business statement sheets, calculation documents, price markings, but also payroll documents, insofar as they are not already accounting documents and checkout strips (§ 147 para. 1 No. 2, 3, 5 in accordance with para 3 AO, § 257 para. 1 No. 2 and 3 in conjunction with para 4 of the HGB.
- 3 years – Data necessary to take into account potential warranty and damage claims or similar contractual claims and rights and to process related inquiries, based on previous business experience and customary industry practices, will be stored for the duration of the regular statute of limitations of three years (§§ 195, 199 BGB).

Provision of the online offer and web hosting

We process the data of the users in order to make our online services available to them. For this purpose, we process the user’s IP address, which is necessary to transmit the content and functions of our online services to the user’s browser or device.

Processed data types: usage data (e.g. page views and dwell time, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions); Meta, communication and procedural data (e.g. IP addresses, times, identification numbers, persons involved). Log data (e.g. log files relating to logins or the retrieval of data or access times).
Persons concerned: Users (e.g. website visitors, users of online services).
Purposes of processing: provision of our online offer and user-friendliness; Information technology infrastructure (operation and provision of information systems and technical equipment (computer, server, etc.)). security measures.
Storage and deletion: Deletion as specified in the section ‘General information on data storage and deletion’.
Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR.

Further information on processing processes, procedures and services:

Collection of access data and logfiles: Access to our online offer is logged in the form of so-called "server log files". The server logfiles can include the address and name of the retrieved web pages and files, date and time of retrieval, transferred data volumes, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider. The server log files can be used on the one hand for security purposes, e.g. to avoid overloading the servers (especially in the case of abusive attacks, so-called DDoS attacks), and on the other hand to ensure the loading of the servers and their stability; Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR. Deletion of data: Logfile information is stored for a maximum of 30 days and then deleted or anonymized. Data whose further retention is necessary for the purposes of proof are exempted from deletion until the event is finally resolved.
ALL-INCL: services related to the provision of information technology infrastructure and related services (e.g. storage and/or computing capacity); Service providers: ALL-INKL.COM – Neue Medien Münnich, owner: René Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany; Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR); Website: https://all-inkl.com/; Data protection declaration: https://all-inkl.com/data protection information/. Contract processing: Provided by the service provider.

Use of cookies

The term "cookies" refers to functions that store information on users’ devices and read it from them. Cookies can also be used in relation to various concerns, for example for the purposes of the functionality, security and convenience of online offers as well as the preparation of analyses of visitor flows. We use cookies in accordance with legal regulations. If necessary, we obtain the prior consent of the users. If consent is not necessary, we rely on our legitimate interests. This applies if the storage and reading of information is essential in order to be able to provide explicitly requested content and functions. This includes, for example, the storage of settings as well as ensuring the functionality and security of our online offer. Consent can be revoked at any time. We clearly inform about their scope and which cookies are used.

Information on data protection legal bases: Whether we process personal data using cookies depends on consent. If consent is given, it serves as a legal basis. Without consent, we rely on our legitimate interests as explained above in this section and in the context of the respective services and procedures.

Storage time: With regard to storage time, the following types of cookies are distinguished:

Temporary cookies (also: session or session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed his/her terminal (e.g. browser or mobile application).
Permanent cookies: Permanent cookies remain stored even after closing the end device. For example, the log-in status can be saved and preferred content can be displayed directly when the user visits a website again. Likewise, the user data collected with the help of cookies can be used for range measurement. Unless we provide users with explicit information about the type and storage period of cookies (e.g. in the context of obtaining consent), they should assume that they are permanent and that the storage period can be up to two years.

General information on revocation and objection (opt-out): Users can revoke the consents given by them at any time and also declare an objection to the processing in accordance with the legal requirements, also by means of the privacy settings of their browser.

Processed data types: Meta, communication and procedural data (e.g. IP addresses, times, identification numbers, persons involved).
Persons concerned: Users (e.g. website visitors, users of online services).
Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR. Consent (Art. 6 para 1 s. 1 lit. a) GDPR.

Further information on processing processes, procedures and services:

Processing of cookie data based on consent: We use a consent management solution in which the consent of users is obtained for the use of cookies or for the procedures and providers mentioned in the consent management solution. This procedure serves to obtain, log, manage and revoke consents, in particular with regard to the use of cookies and comparable technologies, which are used for the storage, reading and processing of information on the end devices of the users. As part of this procedure, the consents of users for the use of cookies and the related processing of information, including the specific processing and providers mentioned in the consent management procedure, are obtained. Users also have the opportunity to manage and revoke their consents. The declarations of consent are stored in order to avoid a renewed query and to be able to prove the consent in accordance with the legal requirements. The storage takes place on the server side and/or in a cookie (so-called opt-in cookie) or by means of comparable technologies in order to be able to assign the consent to a specific user or his device. Unless specific information is available on consent management service providers, the following general information shall apply: The duration of storage of the consent is up to two years. A pseudonymous user identifier is created which, together with the time of consent, Legal bases: We use a consent management solution in which the consent of users is obtained for the use of cookies or for the procedures and providers mentioned in the consent management solution. This procedure serves to obtain, log, manage and revoke consents, in particular with regard to the use of cookies and comparable technologies, which are used for the storage, reading and processing of information on the end devices of the users. As part of this procedure, the consents of users for the use of cookies and the related processing of information, including the specific processing and providers mentioned in the consent management procedure, are obtained. Users also have the opportunity to manage and revoke their consents. The declarations of consent are stored in order to avoid a renewed query and to be able to prove the consent in accordance with the legal requirements. The storage takes place on the server side and/or in a cookie (so-called opt-in cookie) or by means of comparable technologies in order to be able to assign the consent to a specific user or his device. Unless specific information is available on consent management service providers, the following general information shall apply: The duration of storage of the consent is up to two years. A pseudonymous user identifier is created which, together with the time of consent,
Consent (Art. 6 para 1 s. 1 lit. a) GDPR. Compliance: Service providers: Consent management: procedures for obtaining, logging, managing and revoking consent, in particular for the use of cookies and similar technologies for the storage, reading and processing of information on users' terminals and their processing; Website: execution on servers and/or computers under own data protection responsibility;; Data protection declaration: https://compliance.io/. https://compliance.io/legal/ Further information:

Blogs and publication media

An individual user ID, language and types of consents and the time of their submission are stored on the server side and in the cookie on the user's device.

Processed data types: We use blogs or comparable means of online communication and publication (hereinafter "Publication Medium"). The data of the readers are processed for the purposes of the publication medium only insofar as it is necessary for its presentation and communication between authors and readers or for reasons of security. In addition, we refer to the information on the processing of visitors to our publication medium within the framework of this data protection notice.
Persons concerned: Users (e.g. website visitors, users of online services).
Purposes of processing: inventory data (e.g. full name, home address, contact information, customer number, etc.); contact details (e.g. postal and e-mail addresses or telephone numbers); Content data (e.g. textual or pictorial messages and contributions and information relating to them, such as information on authorship or time of creation); Usage data (e.g. page views and dwell time, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions). Meta, communication and procedural data (e.g. IP addresses, times, identification numbers, persons involved).
Storage and deletion: Deletion as specified in the section ‘General information on data storage and deletion’.
Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR.

Further information on processing processes, procedures and services:

feedback (e.g. collecting feedback via online form); provision of our online offer and user-friendliness; security measures. organisational and administrative procedures. If users leave comments or other contributions, their IP addresses can be stored based on our legitimate interests. This is done for our safety if someone leaves unlawful content in comments and contributions (insults, prohibited political propaganda, etc.). In this case, we ourselves can be prosecuted for the comment or contribution and are therefore interested in the identity of the author.

Furthermore, we reserve the right to process the data of the users for spam detection on the basis of our legitimate interests.

On the same legal basis, we reserve the right to store the IP addresses of users for their duration in the case of surveys and to use cookies in order to avoid multiple votes.

The information about the person provided in the context of the comments and contributions, any contact and website information as well as the content information are permanently stored by us until the objection of the users; Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR.

Web analysis, monitoring and optimization

The web analysis (also referred to as "range measurement") serves to evaluate the visitor flows of our online offer and may include behavior, interests or demographic information about visitors, such as age or gender, as pseudonymous values. With the help of reach analysis, we can, for example, identify the time at which our online offer or its functions or content are used most often, or invite them to reuse. It is also possible for us to understand which areas require optimization.

In addition to web analysis, we can also use test procedures to test and optimize different versions of our online offer or its components.

Unless stated otherwise below, profiles, i.e. data combined for a use process, can be created for these purposes and information stored in a browser or in a terminal device and then read out. The information collected includes, in particular, websites visited and elements used there as well as technical information, such as the browser used, the computer system used and information on times of use. If users have agreed to the collection of their location data to us or to the providers of the services we use, the processing of location data is also possible.

In addition, the IP addresses of the users are stored. However, we use an IP masking procedure (i.e. pseudonymization by shortening the IP address) to protect users. In general, in the context of web analysis, A/B testing and optimization, no clear data of the users (such as e-mail addresses or names) are stored, but pseudonyms. This means that we and the providers of the software used do not know the actual identity of the users, but only the information stored in their profiles for the purpose of the respective procedures.

Notes on legal bases: If we ask users for their consent to the use of third-party providers, the legal basis of data processing constitutes consent. Otherwise, the user data will be processed on the basis of our legitimate interests (i.e. interest in efficient, economical and recipient-friendly services). In this context, we would also like to point out the information about the use of cookies in this data protection declaration.

Processed data types: Usage data (e.g. page views and dwell time, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions). Meta, communication and procedural data (e.g. IP addresses, times, identification numbers, persons involved).
Persons concerned: Users (e.g. website visitors, users of online services).
Purposes of processing: range measurement (e.g. access statistics, recurring visitor detection); Profiles with user-related information (creation of user profiles). Provision of our online offer and user-friendliness.
Storage and deletion: Deletion as specified in the section ‘General information on data storage and deletion’. Storage of cookies for up to 2 years (unless otherwise stated, cookies and similar storage methods may be stored on users’ devices for a period of two years).
Security measures: IP masking (pseudonymization of the IP address).
Legal bases: Consent (Art. 6 para 1 s. 1 lit. a) GDPR. Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR.

Further information on processing processes, procedures and services:

Google Analytics: We use Google Analytics to measure and analyze the use of our online offer based on a pseudonymous user identification number. This identification number does not contain any unique data, such as names or email addresses. It serves to assign analytical information to a terminal device in order to recognize which content the users have accessed within one or different usage processes, which search terms they have used, re-accessed or interacted with our online offer. Likewise, the time of use and its duration are stored, as well as the sources of the users who refer to our online offer and technical aspects of their devices and browsers.
Pseudonymous profiles of users with information from the use of different devices are created, whereby cookies can be used. Google Analytics does not log and store individual IP addresses for EU users. Analytics, however, provides rough geographic location data by deriving the following metadata from IP addresses: city (and the city’s derived latitude and longitude), continent, country, region, subcontinent (and ID-based counterparts). In EU traffic, IP address data is used exclusively for this derivation of geolocation data before it is immediately deleted. They are not logged, are not accessible and are not used for any other use. When Google Analytics collects measurement data, all IP queries are performed on EU-based servers before traffic is routed to Analytics servers for processing; Service providers: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; Legal bases: Consent (Art. 6 para 1 s. 1 lit. a) GDPR); Website: https://marketingplatform.google.com/intl/en/about/analytics/; Security measures: IP masking (pseudonymization of the IP address); Data protection declaration: https://policies.google.com/privacy; Contract processing: https://business.safety.google/adsprocessorterms/; Possibility of objection (opt-out): Opt-out plugin: https://tools.google.com/dlpage/gaoptout?hl=en, settings for displaying advertisements: https://myadcenter.google.com/personalizationoff. https://compliance.io/legal/ https://business.safety.google/adsservices/ (Types of processing and data processed).

Affiliate Programs and Affiliate Links

In our online offer, we integrate so-called affiliate links or other references (which may include search masks, widgets or discount codes) to the offers and services of third parties (collectively referred to as "affiliate links"). If users follow the affiliate links or subsequently take advantage of the offers, we may receive a commission or other benefits from these third-party providers (collectively, "Commission").

In order to be able to track whether the users have used the offers of an affiliate link used by us, it is necessary that the respective third-party providers learn that the users have followed an affiliate link used within our online offer. The assignment of the affiliate links to the respective business transactions or to other promotions (e.g. purchases) serves solely the purpose of commission settlement and is cancelled as soon as it is no longer necessary for the purpose.

For the purposes of the aforementioned assignment of affiliate links, the affiliate links may be supplemented by certain values that are part of the link or can be stored in another way, e.g. in a cookie. The values can include in particular the source website (referrer), the time, an online identifier of the operator of the website on which the affiliate link was located, an online identifier of the respective offer, the type of link used, the type of offer and an online identifier of the user.

Notes on legal bases: If we ask users for their consent to the use of third-party providers, the legal basis for the processing of data is consent. Otherwise, the data of the users will be processed on the basis of our legitimate interests (i.e. interest in efficient, economical and recipient-friendly services). In this context, we would also like to point out the information about the use of cookies in this data protection declaration.

Processed data types: contract data (e.g. subject matter of the contract, duration, customer category); Usage data (e.g. page views and dwell time, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions). Meta, communication and procedural data (e.g. IP addresses, times, identification numbers, persons involved).
Persons concerned: interested parties. Users (e.g. website visitors, users of online services).
Purposes of processing: Affiliate tracking.
Storage and deletion: Deletion as specified in the section ‘General information on data storage and deletion’.
Legal bases: Consent (Art. 6 para 1 s. 1 lit. a) GDPR. Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR.

Further information on processing processes, procedures and services:

Amazon Partner Program: Affiliate Program (Amazon and the Amazon logo are trademarks of Amazon.com, Inc. or one of its affiliates); Service providers: Amazon EU S.à r.l. (Société à responsabilité limitée), 38 avenue John F. Kennedy, L-1855 Luxembourg; Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR); Website: https://www.amazon.de. Data protection declaration: https://www.amazon.de/gp/help/customer/display.html?nodeId=201909010.
Booking.com Partner Program: affiliate marketing affiliate program; Service providers: Booking.com BV, Herengracht 597, 1017 CE Amsterdam, the Netherlands; Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR); Website: https://www.booking.com. Data protection declaration: https://www.booking.com/content/privacy.de.html.
Digistore24 Partner Program: affiliate marketing affiliate program; Service providers: Digistore24 GmbH, St.-Godehard-Straße 32, 31139 Hildesheim, Germany; Legal bases: Legitimate interests (Art. 6 para 1 s. 1 lit. f) GDPR); Website: https://www.digistore24.com. Data protection declaration: https://www.digistore24.com/page/privacy.

Created with free data protection Generator.de by Dr. Thomas Schwenke