1.Name and contact details of the controller

This data protection information applies to the data processing within the scope of the visit of the website of

MumMeFit GmbH
Welfenstr. 108
81541 München

Our data protection contact person may be reached under the above contact details.


2.  Collection and storage of personal data and the nature and purpose of their use

 2.1.  When visiting the website

When calling up our website the browser used on your device automatically sends information to the server of our website. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until its automatic deletion (after the purpose of collection has expired, but after 30 days at the latest):

  • the browser used, including the version and operating system of your computer,
  • IP address of the requesting computer,
  • Date and time of access,
  • The name and URL of the retrieved file,
  • Website from which access is made (referrer URL),

We process the above-mentioned data for the following purposes:

Ensuring that the website is connected smoothly,
Ensuring a comfortable use of our website,
evaluation of system safety and stability, and
for other administrative

The legal basis for data processing is Art. 6 para. 1 sentence 1 letter f GDPR. Our legitimate interest follows from the above-mentioned purposes for data collection. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.

We also use cookies when you visit our website. You will find more detailed explanations on this under point 4 of this data protection declaration.


2.2 If you contact us by e-mail

For questions of any kind we offer you the possibility to contact us by e-mail in addition to contacting us by phone. In this case we will be informed of the e-mail account from which the request was made. Further details can be provided voluntarily.

Please bear in mind that unencrypted e-mails do not offer any protection against unauthorized access by third parties. You can contact us and discuss the possibilities of an encrypted transmission with us in confidence.

Data processing for the purpose of contacting us by e-mail is carried out in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR on the basis of your voluntarily given consent. The personal data collected by us for the purpose of responding to your enquiry will be deleted after the enquiry you have made has been completed.


2.3 When using our contact form

Finally, we also offer you the opportunity to contact us using a form provided on the website. This requires you to provide a valid e-mail address so that we know who the enquiry comes from and can respond to it. Further details can be provided voluntarily, such as your name, in order to enable a personal and individualized approach.

Data processing for the purpose of contacting us is carried out in accordance with Art. 6 Para. 1 S. 1 lit. a GDPR on the basis of your voluntarily given consent. The personal data collected by us for the use of the contact form will be deleted after the completion of your request.


2.4 When using the blog functions

On our blog subpage, where we publish various posts on topics related to our activities, you can make public comments and we present reviews that you have made about our appearances on social media platform. We recommend that you always use a pseudonym instead of your real name. If you wish to submit comments directly via our website, you will be required to provide a user name and an e-mail address, all other information is voluntary. If you make a comment, we will continue to store your IP address, which we will delete together with the routine deletion of the contribution on our website after three years at the latest. This storage is necessary for us to be able to defend ourselves against liability claims in cases of possible publication of illegal content. We need your e-mail address in order to contact you in case a third party objects to your comment as unlawful. The legal basis for this is Art. 6 para. 1 sentence 1 lit. b and f GDPR. The comments will not be checked before publication. We reserve the right to delete comments if they are objected to as illegal by third parties.

When writing your comment, you can tick the box for our notification service. This will inform you when other users leave a comment on the post or when new posts are made. For this service we use the so-called double-opt-in procedure, i.e.  h. You will receive an e-mail in which you must confirm that you are the owner of this e-mail address and wish to receive the notifications. You can cancel the notifications at any time by clicking on the link contained in the e-mail. Your personal data, including your e-mail address, your time of registration for the service and your IP address will be stored by us until you unsubscribe from the notification service.

The legal basis for this data processing is your consent granted in accordance with Art. 6 Paragraph 1 S. 1 lit. a GDPR.


2.5 When using our newsletter

You can subscribe to our newsletter with your separate consent. The advertised goods and services are specified in the declaration of consent. We use the so-called double-opt-in procedure to subscribe to our newsletter. This means that after your registration, we will send you an e-mail to the e-mail address provided, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we store your IP address and the time of registration and confirmation. The purpose of this procedure is to be able to prove your registration and, if necessary, to clarify any possible misuse of your personal data.

Your e-mail address is the only mandatory information for sending the newsletter. The provision of further, separately marked data is voluntary and is used to address you personally. After your confirmation we will save your e-mail address for the purpose of sending the newsletter. The legal basis is Art. 6 para. 1 sentence 1 lit. a DS-GVO.

You can revoke your consent to the sending of the newsletter at any time in accordance with Art. 7 Para. 3 GDPR and unsubscribe from the newsletter. You can revoke your consent by clicking on the link provided in each newsletter e-mail, by e-mail to newsletter@mummefit. com or by sending a message to the contact details given in the imprint.

We would like to point out that we evaluate your user behavior when the newsletter is sent. For this evaluation, the e-mails sent contain so-called web beacons or tracking pixels, which represent one-pixel image files stored on our website. For the evaluations we link the data mentioned in paragraph 2.a) and the web beacons with your e-mail address and an individual ID. Links received in the newsletter may also contain this ID. We use the data thus obtained to create a user profile in order to tailor the newsletter to your individual interests. We record when you read our newsletters, which links you click on and deduce your personal interests. We link this data to actions you take on our website.

You can object to this tracking at any time by clicking on the separate link provided in each e- mail or by informing us via another contact channel. The information is stored as long as you have subscribed to the newsletter. After unsubscribing, we store the data purely statistically and anonymously.

We use the list provider MailChimp to send our newsletter. MailChimp is an offer from The Rocket Science Group, LLC, 512 Means Street, Suite 404, Atlanta, GA 30318 (in the following Mailchimp). Mailchimp is certified under the EU/-US Privacy Shield. We have also entered into a written agreement with Mailchimp for order processing. The data stored during the newsletter registration is transmitted to Mailchimp and stored by Mailchimp. Furthermore, Mailchimp enables us to analyze how the sent newsletters are opened and used. Further information about data protection in connection with MailChimp can be found at:


3.  Transfer of data

Your personal data will not be transferred to third parties for purposes other than those listed below.

We only pass on your personal data to third parties if:

  • you have given your express consent in accordance with Art. 6 Para. 1 sentence 1 letter a GDPR,
  • the disclosure pursuant to Art. 6 para. 1 sentence 1 letter f GDPR is necessary for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data,
  • in the event that there is a legal obligation to pass on the data pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR, and
  • this is legally permissible and is required under Art. 6 para. 1 sentence 1 lit. b GDPR for the processing of contractual relationships with

4.  Cookies

 We use cookies on our site. These are small files that are automatically created by your browser and stored on your end device (laptop, tablet, smartphone or similar) when you visit our site. Cookies do not cause any damage on your terminal device, do not contain viruses, Trojans or other malicious software.

Information is stored in the cookie, which results in each case in connection with the specifically used terminal device. This does not mean, however, that we obtain direct knowledge of your identity.

The use of cookies serves on the one hand to make the use of our offer, especially our web shop, more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted when you leave our site.

In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a certain fixed period of time. If you visit our site again in order to use our services, we will automatically recognize that you have already been with us and which entries and settings you have made so that you do not have to enter them again.

The data processed by cookies is required for the purposes mentioned above in order to safeguard our legitimate interests and those of third parties in accordance with Art. 6 Paragraph 1 Sentence 1 lit. f GDPR.

Most browsers automatically accept cookies. However, you can configure your browser so that no cookies are stored on your computer or so that a message always appears before a new cookie is created. However, disabling cookies completely may mean that you will not be able to use all the functions of our website.


5.  Third-party plug-ins and web tracking

 5.1 Integration of Google Universal Analytics

If you have given your consent, we use Google Universal Analytics, a web analysis service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, US (hereinafter “Google”) for the purpose of designing and continuously optimizing our pages to meet your needs. The legal basis for the use of Google Analytics is Art. 6 para. 1 sentence 1 lit. f GDPR. In this context, pseudonymised user profiles are created and cookies (see in more detail under No. 4) are used. The information generated by the cookie about your use of this website such as

  • Browser type/version,
  • operating system used,
  • Referrer URL (the previously visited page),
  • Host name of the accessing computer (IP address),
  • Time of the server request,

are transmitted to a Google server in the USA and stored there. The information is used to evaluate the use of the website, to compile reports on the website activities and to provide further services associated with the use of the website and the Internet for the purposes of market research and the design of these Internet pages in line with requirements. This information may also be transferred to third parties if required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are made anonymous using the “anonymizeIP” function, so that it is not possible to assign them (IP masking).

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing a browser add-on here.

As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent Google Analytics from recording the data by clicking on this link. An opt-out cookie is set to prevent the future collection of your data when you visit this website. The opt- out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you will have to set the opt-out cookie again.

Further information on data protection in connection with Google Analytics can be found in the Google Analytics help at


5.2 Use of Google Ads (formerly Google AdWords) Conversion tracking

This website uses the online advertising program “Google Ads” and, within the framework of Google Ads, the conversion tracking of Google. We use the Google Ads service to draw attention to our attractive offers by means of advertising on external websites. In relation to the data of the advertising campaigns, we can determine how successful the individual advertising measures are. In this way, we pursue the interest in showing you advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of advertising costs.

The conversion tracking cookie is set when a user clicks on an ad ad displayed by Google. These cookies generally expire after 30 days and are not used for personal identification. If the user visits certain sub-pages of this website and the cookie has not expired, Google and we may recognize that the user clicked on the ad and was redirected to that page. Each Google Ads customer receives a different cookie. As a result, cookies cannot be tracked across the websites of ads customers. The information collected through the conversion cookie is used to compile conversion statistics for ads customers who have opted in to conversion tracking. The customers will know the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you do not wish to participate in tracking, you can block this usage by disabling the Google Conversion Tracking cookie from your web browser under User Preferences. You will then not be included in the conversion tracking statistics. We use Google Ads because of our legitimate interest in targeted advertising in accordance with Art. 6 Para. 1 lit. f GDPR.

You can permanently deactivate cookies for advertising preferences by making the appropriate setting in your browser software to prevent them or by downloading and installing the browser plug-in available under the following link here. Please note that certain functions of this website may not be able to be used or may only be used to a limited extent if you have deactivated the use of cookies.


5.3 Integration of Google Maps

On our website, we use the “Google Maps” offer from Google on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR. This enables us to display interactive maps directly on the website and enables you to use the map function conveniently. By visiting the website, Google receives the information that you have called up the corresponding subpage of our website. In addition, the data mentioned under point 2 a) of this declaration is transmitted. This occurs regardless of whether Google provides a user account through which you are logged in or whether no user account exists. If you are logged in at Google, your data will be assigned directly to your account. If you do not wish to be assigned to your profile on Google, you must log out before activating the button. Google stores your data as user profiles and uses them for the purposes of advertising, market research and/or the needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, whereby you must contact Google to exercise this right.


5.4. Use of Facebook Remarketing

We use the remarketing function “Custom Audiences” of Facebook Inc. on our website. 1601 S California Ave, Palo Alto, California 94304, USA. This function serves the purpose of targeting website visitors with interest-based advertising on the social network Facebook. For this purpose, the Facebook remarketing tag was implemented on the website. This tag is used to establish a direct connection to the Facebook servers when visiting the website. This tells the Facebook server which of our pages you have visited. Facebook assigns this information to your personal Facebook user account. When you visit the social network Facebook, you will then be shown personalized, interest-based Facebook ads. The processing is carried out on the basis of Art. 6 para. 1 letter f GDPR on the basis of a legitimate interest in the stated purpose. You have the right to object at any time for reasons arising from your particular situation to the processing of personal data relating to you on the basis of Art. 6 para. 1 f GDPR. For this purpose you can deactivate the remarketing function “Custom Audiences” here. Please note that certain functions of this website may not be able to be used, or only to a limited extent, if you have deactivated the use of cookies.


5.5 LinkedIn Ads

We use “LinkedIn Ads” on our website, a service provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. LinkedIn Ads stores and processes information about your usage of our website. LinkedIn Ads uses cookies, which are small text files that are stored locally in the cache of your web browser on your terminal device and which enable an analysis of your use of our website.

We use LinkedIn Ads for marketing and optimization purposes, in particular to analyze the use of our website and to continuously improve individual functions and offers as well as the user experience. By statistically evaluating user behavior, we can improve our offer and make it more interesting for you as a user. This is also our legitimate interest in the processing of the above data by the third party provider. The legal basis is Art. 6 para. 1 sentence 1 lit. f) GDPR.

You can prevent the installation of cookies by deleting existing cookies and deactivating the storage of cookies in the settings of your web browser. We would like to point out that in this case you may not be able to use all functions of our website to their full extent. You can also prevent the collection of the above-mentioned information by LinkedIn by unsubscribing to interest-based advertising here.

Please note that certain functions of this website may not be able to be used or may only be used to a limited extent if you have deactivated the use of cookies.


5.6 Integration of social media plug-ins

We use social media plug-ins of the social networks Facebook, Twitter Google+ and Pinterest on our website on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR in order to make our website better known. The advertising purpose behind this is to be regarded as a legitimate interest within the meaning of the GDPR. The responsibility for operation in conformity with data protection regulations must be guaranteed by their respective providers. The integration of these plug-ins by us takes place by way of the so-called two-click solution in order to protect visitors to our website in the best possible way. This means that when you visit our site, no personal data is initially passed on to the providers of the plug-ins. You can recognize the provider of the plug-in by the initial letter or the logo on the box. We give you the opportunity to communicate directly with the provider of the plug-in via the button. Only if you click on the marked box and thereby activate it, the plug-in provider will receive the information that you have accessed the corresponding website of our online offer. In addition, the data mentioned under point 2 of this declaration will be transmitted. In the case of Facebook, the IP address will be anonymized immediately after the provider in Germany is identified. By activating the plug-in, your personal data is thus transmitted to the respective plug-in provider and stored there (in the case of US providers in the USA). Since the plug-in provider collects data in particular via cookies, we recommend that you delete all cookies via your browser’s security settings before clicking on the greyed-out box.

If you click on the corresponding social network icons, you will automatically be redirected to our profile in the respective network. In order to use the functions of the respective network there, you will have to log in to your user account for the respective network.

If you access a link to a network while logged into your account on that network, the content of our Site may be linked to your profile on the network, which means that the network may link your visit to our Site directly to your user account. If you wish to prevent this, you should log out before clicking on the relevant links. In any case, an assignment will be made when you log in to the relevant network after clicking on the link.

Please note that you use these profiles and the functions of the networks on your own responsibility. This applies in particular to the use of interactive functions (e.g. commenting, sharing, rating).

Please note that we have no influence on the data collected and data processing when you enter these networks (including our company profile), nor are we aware of the full scope of data collection, the purposes of processing and the retention periods. We also have no information about the deletion of data collected by the providers, nor whether your data is transferred to countries outside the European Union.

The manner in which the network operators use the data from visits to their sites for their own purposes, the extent to which activities on the site are assigned to individual users, how long the networks store this data and whether data from visits to the network sites is passed on to third parties is not conclusively and unambiguously named for these networks and is not known to us.

The plug-in provider stores the data collected about you as user profiles and uses them for the purposes of advertising, market research and/or the design of its website to meet requirements. Such an evaluation is carried out in particular (also for users who are not logged in) for the purpose of presenting need-based advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, whereby you must contact the respective plug-in provider in order to exercise this right.

Via the plug-ins we offer you the possibility to interact with social networks and other users, so that we can improve our offer and make it more interesting for you as a user.

5.7 Further information

Further information on the purpose and scope of data collection and its processing by the plug- in provider and web tracking tools, as well as the respective addresses, can be found in the data protection declarations of these providers, which are provided below. There you will also receive further information on your rights and setting options to protect your privacy.

Google Maps, Google+, Google Ads and Google Analytics: Google LLC, 1600 Amphitheater Parkway, Mountainview, California 94043, USA; Google also processes your personal data in the USA and is subject to the EU-US Privacy Shield,

Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA;; more information with regard to data processing:, as well as Facebook is part of the EU-US-Privacy-Shield, Framework.

LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. . LinkedIn’s US parent company has signed and certified itself under the Privacy Shield Agreement between the European Union and the United States. As a result, it also undertakes to comply with the standards and rules of European data protection law. Further information can be found in the following linked entry: Xing AG, Gänsemarkt 43, 20354 Hamburg, DE;


6.   Special data protection notices for online meetings, telephone conferences and webinars in connection with the use of “Zoom”

6.1 Purpose of the processing

We use the “Zoom” tool to conduct telephone conferences, online meetings, video conferences and/or webinars (hereinafter: “Online Meetings”). “Zoom” is a service of Zoom Video Communications, Inc. which is based in the USA.

 Note: If you call up the “Zoom” website, the provider of “Zoom” is responsible for data processing. However, calling up the Internet site is only necessary for the use of “Zoom” in order to download the software for the use of “Zoom”. You can also use “Zoom” if you enter the respective meeting ID and, if applicable, other access data for the meeting directly in the “Zoom” app. If you do not want to or cannot use the “Zoom” app, the basic functions can also be used via a browser version, which you can also find on the “Zoom” website.


6.2 What kind of data are processed?

When using “Zoom”, different types of data are processed. The scope of the data also depends on the information you provide before or during participation in an “online meeting”.

The following personal data may be processed:

  • User information: first name, last name, telephone (optional), e-mail address, password (if “Single-Sign-On” is not used), profile picture (optional), department in the company (optional)
  • meeting metadata: Subject, description (optional), participant IP addresses, device/hardware information
  • For recordings (optional): MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings, text file of online meeting chat.
  • When dialing in by telephone: information on incoming and outgoing telephone number, country name, start and end time. If necessary, other connection data, such as the IP address of the machine, can be saved.
  • Text, audio and video data: You may be able to use the chat, question or survey functions in an “online meeting”. In this respect, the text entries you make will be processed in order to display them in the “online meeting” and, if necessary, to record them. In order to enable the display of video and the

playback of audio, the data from the microphone of your terminal device as well as from any video camera of the terminal device will be processed accordingly for the duration of the meeting. You can switch off or mute the camera or microphone yourself at any time using the “Zoom” applications.

In order to participate in an “online meeting” or to enter the “meeting room”, you must at least provide information about your name.


6.3 Scope of processing

We use “zoom” to conduct “online meetings”. If we want to record “online meetings”, we will inform you transparently in advance and – if necessary – ask for your consent. The fact of the recording will also be displayed in the “Zoom” app.

If necessary for the purposes of logging the results of an online meeting, we will log the chat content. However, this will not normally be the case.

In the case of webinars, we can also process the questions asked by webinar participants for the purposes of recording and follow-up of webinars.

If you are registered as a user in “Zoom”, reports of “online meetings” (meeting metadata, telephone dial-up data, questions and answers in webinars, survey function in webinars) can be saved for up to one month in “Zoom”.

There is no automated decision-making within the meaning of Art. 22 GDPR.


6.4 Legal bases of data processing

The legal basis for data processing in the conduct of “online meetings” is Art. 6 para. 1 lit. b) GDPR, insofar as the meetings are conducted within the framework of contractual relationships.

If no contractual relationship exists, the legal basis is Art. 6 para. 1 lit. f) GDPR. Here too, we are interested in the effective implementation of “online meetings”.


6.5 Recipient / transfer of data

Personal data processed in connection with participation in “online meetings” will not be passed on to third parties, unless they are specifically intended to be passed on. Please note that content from “online meetings” as well as personal meetings often serve the purpose of communicating information with customers, interested parties or third parties and are therefore intended to be passed on.

Other recipients: The provider of “Zoom” necessarily obtains knowledge of the above- mentioned data, insofar as this is provided for in our contract processing agreement with “Zoom”.


6.6 Data processing outside the European Union

“Zoom” is a service provided by a US operator. Personal data is therefore also processed in a third country. We have concluded a data processing on behalf agreement with the provider “Zoom” which meets the requirements of Art. 28 GDPR.

An adequate level of data protection guaranteed by the conclusion of the so-called EU standard contractual clauses and additional technical measures.


7.  Rights of data subjects

 You have the right:

to request information about your personal data processed by us in accordance with 15 GDPR In particular, you may request information on the purposes of processing, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right of rectification, erasure, restriction of processing or opposition, the existence of a right of appeal, the origin of your data, if not collected by us, and the existence of automated decision making including profiling and, where applicable, meaningful information on the details of such data;
in accordance with Art. 16 GDPR, to demand the immediate correction of incorrect or incomplete personal data stored by us;
in accordance with 17 GDPR, to demand the deletion of your personal data stored with us, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims
pursuant to 18 GDPR, to demand the restriction of the processing of your personal data if you dispute the accuracy of the data, if the processing is unlawful but you refuse to delete it and we no longer need the data, but you need the data for the assertion, exercise or defense of legal claims or if you have lodged an objection to the processing pursuant to Art. 21 GDPR
in accordance with 20 GDPR to receive your personal data that you have provided us with in a structured, common and machine-readable format or to request that it be transferred to another responsible party
in accordance with Art. 7 Para. 3 GDPR to revoke your consent to us at any time. As a result, we may no longer continue to process the data which was based on this consent in the future and
to complain to a supervisory authority pursuant to 77 GDPR. As a rule, you can turn to the supervisory authority at your usual place of residence or workplace or at our headquarters.


8.  Right of objection

 If your personal data are processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 letter f GDPR, you have the right, pursuant to Art. 21 GDPR, to object to the processing of your personal data if there are reasons for doing so arising from your particular situation or if the objection is directed against direct advertising. In the latter case, you have a general right of objection, which will be implemented by us without indicating any special situation.

If you wish to exercise your right of revocation or objection, simply send an e-mail to [email protected].


9.  Data security

 We use the common SSL (Secure Socket Layer) procedure in connection with the highest level of encryption supported by your browser when you visit our website. As a rule, this is a 256 bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is being transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use suitable technical and organizational security measures to protect your data against accidental or deliberate manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

10.  Version and amendments of this Privacy Policy

 This Privacy Policy is valid and has last been modified in  December 2020.

 Due to the further development of our website or due to changes in legal or official regulations, it may become necessary to amend this Privacy Policy. The current version is accessible at any time on our website under and can be printed out.