Thank you for your interest in our website. With our privacy policy we inform you in detail about the handling of your data.

1. Personal data refers to any data that can be linked to you personally, such as your name, address, email addresses, and your user behavior.
2. The controller pursuant to Article 4(7) of the EU General Data Protection Regulation (GDPR) is DMO Deutsche Modellsportorganisation GmbH & Co. KG, represented by DMO Deutsche Modellsportorganisation Verwaltungs-GmbH, which is represented by its managing director Andrea Dörpelkus, Uellendahl 71a, 42109 Wuppertal (see also our legal notice).
3. If you have any questions regarding the collection, processing, or use of your personal data, or if you wish to request information, correction, restriction, erasure, or rectification of data, or to withdraw your consent, please contact our data controller pursuant to Article 4(7) of the EU General Data Protection Regulation (GDPR). Please refer to Section 1(2) of this Privacy Policy for contact details.

You have the following rights with respect to your personal data:

1. Right of access (Art. 15 GDPR): You have the right to access the personal data concerning you. You may contact us at any time to request access to this information. If your request for access is not made in writing, please understand that we may ask you to provide proof of your identity to verify that you are the person you claim to be.
2. Right to Rectification or Erasure (Art. 16 and Art. 17 GDPR): You have the right to have your personal data rectified or erased, to the extent permitted by law. As a general rule, we will only erase personal data once there is no longer a need for further storage. A need may exist, in particular, if the personal data is still required to fulfill contractual obligations, or to assess, grant, or defend against warranty and, where applicable, guarantee claims. In the case of statutory retention obligations, erasure may only be considered after the respective retention period has expired.
3. Right to restriction of processing (Art. 18 GDPR): You have the right to restrict the processing of your personal data to the extent permitted by law.
4. Right to be informed (Art. 19 GDPR): If you have exercised your right to rectification, erasure, or restriction of processing against the controller, the controller is obligated to notify all recipients to whom your personal data has been disclosed of such rectification, erasure, or restriction of processing, unless this proves impossible or involves disproportionate effort. You have the right to be informed by the controller about these recipients.
5. Right to data portability (Art. 20 GDPR): You have the right to receive the personal data concerning you that you have provided to the controller in a structured, commonly used, and machine-readable format. You also have the right to transmit this personal data to another controller without hindrance from the controller to whom the personal data was provided, to the extent that you are legally entitled to do so.
6. Objection to the processing of your personal data (Art. 21 GDPR):
   a) If you have given consent to the processing of your personal data, you may withdraw it at any time. However, the processing of your personal data prior to your withdrawal remains valid.
   b) To the extent that we process personal data as described in this Privacy Policy to safeguard our legitimate interests that prevail following a balancing of interests, you may object to such processing with effect for the future. If your personal data is processed for advertising and data analysis purposes, you may exercise this right at any time. If the processing is carried out for other purposes, you have a right to object only if there are grounds arising from your particular situation. After you exercise your right to object, we will no longer process your personal data for the specified purposes, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing serves to assert, exercise, or defend legal claims.
   c) You may notify us of your objection using the contact information provided in § 1.
7. Right to lodge a complaint with a supervisory authority: You also have the right to lodge a complaint with a data protection supervisory authority regarding our processing of your personal data. Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement, if you consider that our processing of your personal data violates the GDPR. The supervisory authority to which the complaint is submitted shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 of the GDPR.

When you use our website for informational purposes only—that is, when you do not send us any information—we do not collect any personal data, with the exception of the data that your browser transmits to us in order to enable you to visit our website. When you view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure its stability and security: IP address, date and time of the request, time zone difference from Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred in each case, the website from which the request originates, browser, operating system and its interface, and the language and version of the browser software. This data is stored in log files to ensure the website functions properly. Additionally, the data helps us optimize the website and ensure the security of our IT systems. We analyze this data exclusively to improve our services and cannot use it to identify you personally. In this context, the data is not analyzed for marketing purposes. The legal basis is Article 6(1)(f) of the GDPR. The data is deleted as soon as it is no longer necessary to achieve the purpose for which it was collected. In the case of data collected for the provision of our website, this is the case once the respective session has ended. In the case of data stored in log files, this is the case after one month at the latest. Storage beyond this period is possible. In this case, the users’ IP addresses are deleted or anonymized so that the client making the request can no longer be identified.

1. We use a cookie banner on our website to inform you about the technologies we use on our website, as well as to obtain, manage, and document your consent to the processing of your personal data by these technologies. This is necessary pursuant to Article 6(1)(c) of the GDPR to fulfill our legal obligation under Article 7(1) of the GDPR to be able to demonstrate your consent to the processing of your personal data, to which we are subject.
2. Based on the selection you make in the cookie banner on our website, your browser will store our “cookie banner” cookie, which contains information about your consent choices, as well as the date and time of your consent. You can freely adjust your settings and consent at any time via the cookie settings on our website.
3. Your personal data will be deleted after twelve months, unless you have expressly consented to the continued use of your data in accordance with Article 6(1)(a) of the GDPR, or we reserve the right to use your data for other purposes that are permitted by law and about which we inform you in this statement.

To make your visit to our website more engaging, enable the use of certain features, and display relevant products, we use cookies on various pages in addition to the data mentioned above. This serves to protect our legitimate interests—which, following a balancing of interests, take precedence—in presenting our offerings in an optimized manner. Cookies are small text files that are automatically stored on your device. Some of the cookies we use are deleted at the end of the browser session, i.e., after you close your browser (so-called session cookies). Other cookies remain on your device and allow us to recognize your browser the next time you visit (persistent cookies). When you visit our website, you will be informed about the use of cookies for analytical purposes and asked to give your consent to the processing of the personal data used in this context. In this context, reference is also made to this Privacy Policy. The legal basis for data processing using cookies for analytical purposes is Article 6(1)(a) of the GDPR, provided the user has given their consent. Otherwise, the legal basis for the use of technically necessary cookies is Article 6(1)(f) of the GDPR. You can find the storage duration in the overview in your web browser’s cookie settings. You can configure your browser to notify you when cookies are set and decide individually whether to accept them, or to exclude the acceptance of cookies in specific cases or generally. Each browser differs in how it manages cookie settings. This is described in the help menu of each browser, which explains how you can change your cookie settings. If you do not accept cookies, the functionality of our website may be limited.

In addition to simply browsing our website, we offer various services that you can use if you are interested. To do so, you will generally need to provide additional personal data, which we use to provide the respective service and to which the aforementioned data processing principles apply

1. Contact us by email or through our contact form
   When you contact us via email or through the contact form on our website, we will store the email address you provide and—if you voluntarily provide them—your last name, first name, message, and any files you submit via the form in order to respond to your questions and messages. In the case of contact via email, this also constitutes the necessary legitimate interest in processing the data provided. The other personal data processed during the submission process and voluntarily provided in the contact form serves to prevent misuse of the form(s) and to ensure the security of our IT systems. The legal basis for processing data transmitted via email or through the contact form is Article 6(1)(f) of the GDPR. If the purpose of contacting us via email or the contact form is to enter into a contract, the additional legal basis for processing is Article 6(1)(b) of the GDPR. The mandatory information required to respond to your questions and messages is marked separately; all other information is voluntary. The data will be deleted as soon as it is no longer necessary to achieve the purpose for which it was collected, or we will restrict processing if statutory retention obligations apply. For personal data entered in the contact form and data sent via email, this is the case once the relevant conversation with the user has ended. The conversation is considered concluded when it can be inferred from the circumstances that the matter in question has been definitively resolved. The personal data additionally collected during the submission process will be deleted no later than 7 days after submission.
2. Data processing by external service providers
   In some cases, we use external service providers to process your data. These providers have been carefully selected and commissioned by us, are bound by our instructions, and are regularly monitored. As part of the processing carried out on our behalf, a third-party provider provides us with website hosting and display services. This service provider is headquartered in a country within the European Union or the European Economic Area. All data collected in connection with the use of this website or through the forms provided, as described in this Privacy Policy, is processed on its servers. The legal basis for this is Article 6(1)(b) of the GDPR. Processing on other servers takes place only within the scope described in this Privacy Policy.
3. Using the online application forms on our website
   When you use the online application forms on our website, we do not yet process the data and information you enter into the forms. Only once you submit this information via the contact form on our website or by email do we process your data in accordance with Section 5(1) of this Privacy Policy. The legal basis for processing the data transmitted via email or through the contact form is Article 6(1)(f) of the GDPR. If the purpose of contacting us via email or the contact form is to enter into a contract, the additional legal basis for processing is Article 6(1)(b) of the GDPR. The mandatory fields required to respond to your questions and messages are marked separately; all other information is optional. We will delete the data or restrict its processing, subject to any applicable legal retention requirements, as soon as it is no longer necessary for the purpose for which it was collected. For personal data entered in the contact form and data sent via email, this is the case once the relevant conversation with the user has ended. The conversation is considered concluded when it can be inferred from the circumstances that the matter in question has been definitively resolved. The personal data additionally collected during the submission process will be deleted no later than 7 days after submission.
4. Customer Portal
   a) We provide our customers with access to our customer portal on our website. For this personal area, we will provide you with a username (email address or contract number) and a password to log in. If you are logging in for the first time or have forgotten your password, please click on “Reset Password”. A link will then be sent to the email address you provided and on file with us, along with further instructions on how to reset your password.
   b) In the customer portal, you can view, print, and download your invoices, contract documents, and proof of insurance. It is not possible to change the stored data.
   c) We process the data you provided during registration to activate the customer account stored in the customer portal and to fulfill the contract with you, as all communication regarding the contract between you and us—including the transmission of documents, invoices, and important notices (such as price adjustment letters, etc.)—takes place exclusively via our customer portal (online member area), by making the documents available there (Art. 6(1)(b) GDPR). If no customer account has been created for you, we cannot activate a customer account for you in the customer portal.
   d) Every login and every attempt to log in to the customer account is logged (IP address, time of access to the customer account, transmitted cookies, the requested website URL, and the URL of the website from which the file was requested, the stored cookies, the status of the access (file transferred, file not found, etc.), date and time of access, amount of data transferred during the connection, type and version of the browser used, language used, destination of an automatic browser redirection). Logging serves to identify and resolve technical malfunctions and, where there are concrete technical indications, also for the purposes of detecting and preventing misuse (Art. 6(1)(f) GDPR).
5. e) Your customer account will be deleted 90 days after the termination of your contractual relationship with us. The data accessible through the customer account will be processed and deleted in accordance with your contract with us. Logs of customer account access will be deleted 7 days after they are created.
   f) Please log out after each use of the customer account to prevent, for example, unwanted data changes by subsequent users of your browser

We maintain up-to-date technical measures to ensure data security, particularly to protect your personal data from risks associated with data transmission and from unauthorized access by third parties. These measures are regularly updated to reflect the latest technological advancements. Your personal data is transmitted over the internet using SSL encryption, particularly during the ordering process. We secure our website and other systems through technical and organizational measures against loss, destruction, unauthorized access, alteration, or disclosure of your data by unauthorized persons. If you have a customer account, access to your account is only possible after entering your email address [as per Section 4: Email Address or Contract Number; see the note further up on this page] and your personal password. You should therefore always treat your login information as confidential, not share it with others, and close the browser window once you have finished communicating with us. This is especially important if you share a computer with other people.

1. To enable us to communicate with you on social media and keep you informed about our services, we maintain our own pages on these platforms. When you visit one of our social media pages, we are jointly responsible with the provider of the respective social media platform for the processing of your data, in accordance with Article 26 of the GDPR, with regard to the processing operations triggered thereby.
2. We are not the original provider of these sites, but merely use them within the scope of the options offered to us by the respective providers. Therefore, as a precaution, we would like to point out that your data may also be processed outside the European Union or the European Economic Area. Using these sites may therefore involve data protection risks for you, as it may be difficult to exercise your rights—such as the right to access, erasure, or objection—and because processing on social networks is often carried out directly by the providers for advertising purposes or to analyze user behavior, without us being able to influence this. If the provider creates usage profiles, cookies are often used, or your usage behavior is linked to the social media profile you have created.
3. The processing of personal data described above is carried out in accordance with Article 6(1)(f) of the GDPR on the basis of our legitimate interest and the legitimate interest of the respective provider in communicating with you in a timely manner and informing you about our services. If you are required to provide consent to data processing as a user with the respective providers, the legal basis is Article 6(1)(a) of the GDPR in conjunction with Article 7 of the GDPR.
4. Since we do not have access to the providers’ databases, we would like to point out that the best way to exercise your rights (e.g., the right to access, rectification, erasure, etc.) is to contact the respective provider directly. We have provided further information regarding the processing of your data on social media platforms below, for each social media provider we use:a) Facebook
   (Joint) controller for data processing in Europe: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland Privacy Policy: https://www.facebook.com/about/privacy 
   b) Instagram
   (Joint) controller for data processing in Germany: Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland Privacy Policy (Data Policy): https://instagram.com/legal/privacy/
   c) LinkedIn
   (Joint) controller for data processing in Europe: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland Privacy Policy: https://www.linkedin.com/legal/privacy-policy

1. We have integrated the Matomo component from the provider InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand, into this website. Matomo is a web analytics tool used to collect, gather, and analyze data regarding the behavior of website visitors. Among other things, data is collected on which website a user came from (known as the referrer), which subpages of the website were accessed, and how often and for how long a subpage was viewed. This information is used to optimize the website and to conduct a cost-benefit analysis of online advertising.
2. The software is hosted on the data controller’s server, and log files containing sensitive personal data are stored exclusively on that server.
3. Matomo places a cookie on your computer. This cookie enables us to analyze the use of our website. Each time you visit a page on this website, the Matomo component automatically prompts the web browser on your computer to transmit data to our server for the purpose of online analysis. As part of this technical process, we receive personal data, such as the IP address of the data subject, which we use, among other things, to track the origin of visitors and clicks.
4. Cookies are used to store personal information, such as the time of access, the location from which the access originated, and the frequency of visits to our website. Each time you visit our website, this personal data—including the IP address of the internet connection you are using—is transmitted to our server. We store this personal data. We do not disclose this personal data to third parties. These processing operations are carried out exclusively upon the granting of explicit consent in accordance with Art. 6(1)(a) of the GDPR.
5. You can view Matomo's privacy policy at: https://matomo.org/privacy/

1. We use the FriendlyCaptcha tool from Friendly Captcha GmbH, Am Anger 3-5, 82237 Wörthsee, on our website. FriendlyCaptcha allows us to verify whether data on our website (particularly in our contact form) has been entered by a human or by a machine using an automated program. You can find more information about data processing by the provider here: friendlycaptcha.com/de/legal/privacy.
2. FriendlyCaptcha performs the check using an automatic spam filter, which you must enable yourself. For analysis, FriendlyCaptcha evaluates various pieces of information (e.g., the User-Agent, Origin, and Referer request headers, the version of the FriendlyCaptcha widget, and a timestamp). FriendlyCaptcha stores an anonymized counter per IP address to detect malicious users. FriendlyCaptcha stores this data separately from the rest of the data. It is not possible to link this data to specific websites. FriendlyCaptcha anonymizes the user’s IP address using one-way hashing so that the user cannot be personally identified. The IP address is deleted immediately after one-way hashing. FriendlyCaptcha stores only the value of the one-way hash on the FriendlyCaptcha server for a maximum of 30 days. After that, the value of the one-way hash is deleted.
3. The legal basis for data processing by FriendlyCaptcha is Article 6(1)(f) of the GDPR, as we have a legitimate interest in protecting our website from bots, spam, and abusive automated scraping

1. Some pages on our website contain links to YouTube. As a general rule, we are not responsible for the content of websites to which these links lead. However, if you follow a link to YouTube, please note that YouTube stores its users’ data (e.g., personal information, IP address) in accordance with its own data usage policies and uses it for business purposes.
2. YouTube is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.
3. We also directly embed videos stored on YouTube on some of the subpages of our website. When this embedding occurs, portions of the YouTube website are displayed within sections of the browser window. When you visit a page or subpage of our website that contains embedded YouTube videos, a connection is established with the YouTube servers, and the content is displayed on the website by being transmitted to your browser.
4. YouTube content is embedded only in “enhanced privacy mode.” YouTube provides this mode itself and thereby ensures that YouTube does not initially store any cookies on your device. However, when you visit the relevant pages, your IP address and, if applicable, other data are transmitted, thereby indicating which of our web pages you have visited. This information cannot, however, be linked to you unless you have logged into YouTube or another Google service before visiting the page or are permanently logged in. As soon as you start playing an embedded video by clicking on it, YouTube will, through the enhanced privacy mode, only store cookies on your device that do not contain any personally identifiable data, unless you are currently logged in to a Google service. These cookies can be prevented through appropriate browser settings and extensions.
5. By requesting the video, you consent to the placement of the corresponding cookie (Art. 6(1)(a) GDPR).
6. This U.S. company is certified under the EU-U.S. Data Privacy Framework. An adequacy decision pursuant to Article 45 of the GDPR is therefore in place, meaning that personal data may be transferred without the need for further safeguards or additional measures.
7. You can view YouTube's privacy policy at: www.google.de/intl/de/policies/privacy/

1. Your personal data will not be disclosed to third parties for any purposes other than those listed below.
2. We will only disclose your personal data to third parties if:
   a) you have given us your explicit consent to do so pursuant to Article 6(1)(a) of the GDPR,
   b) the disclosure is permissible pursuant to Article 6(1)(f) of the GDPR to safeguard our legitimate interests, and there is no reason to assume that you have an overriding legitimate interest in the non-disclosure of your data,c) in the event that there is a legal obligation to disclose the data pursuant to Article 6(1)(c) of the GDPR, and
   d) this is permitted by law and necessary for the performance of contractual relationships with you pursuant to Article 6(1)(b) of the GDPR.
3. To protect your data and, where necessary, to enable the transfer of data to third countries (outside the EU/EEA), we have entered into data processing agreements based on the European Commission’s Standard Contractual Clauses. If the Standard Contractual Clauses are insufficient to ensure an adequate level of security, your consent pursuant to Article 49(1)(a) of the GDPR may serve as the legal basis for the transfer to third countries. This does not apply, however, to data transfers to third countries for which the European Commission has issued an adequacy decision pursuant to Article 45 of the GDPR.

As of March 2026