Data Protection and Privacy

Privacy Policy

Legal provisions for data protection are contained in the General Data Protection Regulation, the Federal Data Protection Act, and the Telecommunications-Telemedia Data Protection Act (TTSDG).

The controller in terms of data protection regulations is MK Food Truck Catering GmbH, Prinzenallee 1, 40549 Düsseldorf, represented by the managing directors Michael Wilting and Kevin Wittlings.

Below you will find information on which personal data – this includes all data that identifies or makes you identifiable, such as name, address, email address, or user behavior – we collect during your visit to our site and how it is used. If you have any further questions, please feel free to contact us at info@beefbusters.de.

You also have the right to lodge a complaint with a supervisory authority if your data is used unlawfully. The competent authority for us is:

State Commissioner for Data Protection and Freedom of Information
North Rhine-Westphalia
Postfach 20 04 44
40102 Düsseldorf

Tel: 0211/38424-0
Fax: 0211/38424-10
Email: poststelle@ldi.nrw.de

1. Server Data Collection

When you visit our site, various server statistics are automatically stored, which your browser transmits to our provider’s server. The name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address, and the requesting provider are logged.
This data is used for the statistical analysis of visits to our site and cannot be attributed to specific individuals by us.

Legal basis for data collection is Art. 6 para. 1 lit. f) GDPR. This data is not merged with other data sources. The IP address is anonymized. Our legitimate interest in collecting this data is based on the fact that we can optimize our offering for users using this data, for example, by preventing access from malicious sites or optimizing access via specific browsers, and by logging the IP address, the delivery of the page to the visitor is made possible in the first place.
You generally have a right to object to this data collection. However, this is practically not possible in this exceptional case, as otherwise, the use of the site would be impossible.
The data will be deleted as soon as it is no longer needed for the aforementioned purposes.

1a. Data Transmission Security
To transmit your data, we use a secure server with SSL technology (Secure Socket Layer) with 128-bit encryption. This ensures your data is transmitted securely and unreadable to unauthorized persons.
Your passwords are hashed, meaning they are cryptographically stored and thus protected from access by third parties as well as the controllers.

1b. Transfer to Third Countries (Art. 13 para. 1 f GDPR)
It is possible that data may be transferred to third countries through subcontractors or affiliated companies when accessing and using our website and related services. Potential risks include unenforceable data subject rights and a lower level of data protection. By concluding data processing agreements (if such a contractual relationship exists) and standard contractual clauses, including effective additions required by supervisory authorities, we minimize the risk as far as possible.

2. Use and Disclosure of Personal Data
2a. General

If you have provided us with personal data, we use it to answer your inquiries, for consultation, to process contracts concluded with you, and for technical administration. Your personal data will only be passed on or otherwise transmitted to third parties, except in cases explicitly mentioned in this declaration, if this is necessary for contract processing, for billing purposes, or if you have given your prior consent. You have the right to revoke any given consent at any time with effect for the future; see also section 11 regarding your data subject rights.

2b. Contract Processing
In the context of contracts concluded with you, we collect and store the personal data you provide, such as name and address, for the purpose of contract processing. The data processing takes place under joint responsibility with the locally responsible franchise partner, who will carry out the contract fulfillment and invoicing in their own name.

Invoice data may be transferred to the financial authorities.

The legal basis for the collection, processing, and disclosure of data within the scope of contract processing is Art. 6 para. 1 lit. b) GDPR. The legal basis for the transfer of data to financial authorities is Art. 6 para. 1 lit. c) GDPR.
This data will be deleted after the expiry of the applicable statutory retention periods. If no statutory retention obligations apply to us, the data will be deleted when the purpose ceases to exist.

2c. Catering Inquiries, Franchise Inquiries, and Email Inquiries
When using our catering inquiry form, we collect and store your name, number of guests, event date, event location, email address, and telephone number for the purpose of answering your inquiry. Providing the company name and event description is optional. The inquiry will be forwarded to the locally responsible franchise partner, who will contact you to answer a question or prepare an offer.

When using our franchise partnership form, we collect and store your name, email address, and telephone number for the purpose of answering your inquiry. Providing the address is optional.
If you send us an inquiry by email, we collect and store your email address and the data contained in the email to answer your inquiry.

Legal basis: Should a contractual relationship develop from the inquiry in the course of contract initiation, or if the inquiry relates to an existing contractual relationship, the legal basis is Art. 6 para. 1 lit. b) GDPR, as the storage of data is necessary for the fulfillment of a pre-contractual or contractual obligation. Furthermore, we also have a legitimate interest pursuant to Art. 6 para. 1 lit. f) GDPR in processing the data for the purpose of communication and answering your inquiries.
The data will be deleted when the purpose of storage ceases to exist, i.e., after your email/contact form inquiry has been answered or when the matter related to the inquiry has been finally clarified. In the case of an existing contractual relationship or one arising from the inquiry, deletion will take place after the expiry of the statutory retention periods.
Regarding the right to erasure and access, see section 11 below concerning your data subject rights.

2e. Online Applications
If you apply for a job advertisement with us, your personal data such as name, address, and telephone number will be collected by us and stored for the duration of the selection process. Your data will be used by the management for processing within the selection process. Your personal data will not be passed on to third parties.
Should the specific position you are applying for already have been filled, but your profile makes you a candidate for future employment, we will obtain your explicit consent before further storing or forwarding your application, unless you have already agreed to such storage or forwarding in your application.
If you submit an unsolicited application to us and use our general contact email address for this purpose, the content of your application email may be viewed by unauthorized personnel. The requirement is that application documents are immediately forwarded unopened to the HR department and the incoming and forwarding emails are deleted. If you wish to prevent this, please contact us by phone before submitting your unsolicited application so that you can be provided with the contact details of the correct contact person.

3. Cookies
The internet pages use so-called cookies in several places. They serve to make our offering more user-friendly, effective, and secure. A cookie is a piece of text information that our website places on your device via the web browser. Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit ends. We also use cookies that recognize your browser when you log into your customer account and facilitate your access to the stored content.
Legal basis is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest arises from the fact that with the aforementioned cookies, we merely facilitate the accessibility of the site for you, do not collect any tracking data, and thus no infringement of your personal rights and fundamental freedoms occurs.
You can disable the acceptance of cookies in your web browser. However, this may lead to functional impairments. For your further data subject rights, see section 11 below.
We use cookies from the following third-party providers:

3b. Cookie Consent Borlabs
For cookie consent management, we use the “Borlabs” tool from the provider Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg, Germany, within which your consents for the use of cookies, or the processing and providers mentioned in the cookie banner, can be obtained, managed, and revoked by you. For this purpose, an individual user ID, the language, as well as the types of consents and the time of their submission, are stored server-side and in the cookie on your device. The duration of consent storage can be up to two years. A pseudonymous user identifier is created and stored along with the time of consent, information on the scope of consent (e.g., which categories of cookies and/or service providers), as well as the browser, system, and device used.

Legal basis is Art. 6 para. 1 sentence 1 lit. a. GDPR (consent). Furthermore, it corresponds to our legitimate interests within the meaning of Art. 6 para. 1 sentence 1 lit. f. GDPR that we can offer you the option of individual consent to the use of cookies.

4. Google Tools
We use the following “Google services”. The responsible entity is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Data transfers from Google Ireland to Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, always occur, which we always draw attention to.

Further information on whether and which data is collected by Google through the use of these services can be found in Google’s Privacy Policy.

Data transfer takes place on the basis of the adequacy decision (EU-US Data Framework) between the EU and the USA. We have also concluded EU standard data protection clauses with Google, with which Google demonstrates to us compliance with appropriate and suitable technical and organizational measures for the protection of your personal data.

4a. Google Tag Manager
Our website uses Google Tag Manager. This solution creates and updates so-called tags, which we can then manage. The Tag Manager implements tags from the services we use and thus triggers other tags. The tool itself does not collect personal data; it only serves for management. However, the tags triggered by it can independently collect personal data (more on this below). However, Google Tag Manager does not access this collected data. If the tool is deactivated, the deactivation applies to all tags implemented via the tool.

4b. Google Analytics
This website uses the web analytics service Google Analytics.
Google Analytics uses so-called “cookies” for the purpose of analyzing user behavior on the website and for reach measurement. An overview of how Google uses cookies and which cookies are used can be found in this overview.
In addition, we use the technical extension “Google Signals”, which enables cross-device tracking – i.e., tracking across different devices. This allows for the assignment of a single website visitor to various devices. However, this only happens if you have logged into a Google service during your website visits and have also activated the “personalized advertising” option in your Google account settings.

Legal basis for the collection and storage of data is Art. 6 para. 1 sentence 1 lit. a) GDPR, § 25 TDDDG. By activating Google Analytics in the Borlabs Cookie, you consent to the processing of your data for Google Analytics. We have extended Google Analytics on our website with the code “gat._anonymizeIp();” to ensure anonymized collection of IP addresses (so-called IP masking). It is therefore not possible for us to assign the collected analytical data to a specific person.

Data transfer to third countries: The information generated by the cookies about your use of this website is usually transferred to a Google LLC server in the USA and stored there. Due to the activated IP anonymization on this website, your IP address will, however, be truncated by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activities, and to provide other services related to website and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

Revocation:

You can revoke your consent at any time by deleting all set (consent) cookies in your browser.

If you do not wish to use “Google Signals”, you can deactivate the “personalized advertising” option in your Google account settings.

You can generally prevent the storage of cookies by adjusting your browser software settings or using the cookie consent tool. However, we would like to point out that in this case, you may not be able to use all functions of this website to their full extent.

Further information on data protection at Google Analytics can be found here.

Data stored by Google is deleted by default within 14 months.

4c. Google Ads

Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters specific search terms on Google (keyword targeting). Furthermore, targeted advertisements can be displayed based on user data available on Google (e.g., location data and interests) (audience targeting). As website operators, we can quantitatively evaluate this data by, for example, analyzing which search terms led to the display of our advertisements and how many ads resulted in corresponding clicks.

The use of this service is based on your consent given in the consent tool pursuant to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. Consent can be revoked at any time in the consent tool.

Further information and data protection provisions can be found in the privacy policy for Google Ads.

In addition, we have set up Enhanced Conversions for Google Ads. Enhanced Conversions allow us to improve the accuracy of tracking and also better protect the privacy of website visitors by supplementing the existing conversion tags with the hashed first-party conversion data from the website. Hashing the first-party data before submitting it to Google Ads can ensure a higher level of data protection, as personal information (e.g., name and email address) is converted into a hashed string. However, the use of Enhanced Conversion currently requires the respective website visitor to have a Google profile, so it only applies to these website visitors. Furthermore, in contrast to “normal” conversion tracking, only data-driven actions (such as purchases and registrations) are recorded.

4d. Google Remarketing Function

With Google Ads Remarketing, website visitors who interact with our online offer can be assigned to specific target groups in order to subsequently display interest-based advertising in the Google advertising network (remarketing or retargeting).

Furthermore, there is the possibility that the advertising target groups created with Google Ads Remarketing are linked to the cross-device functions of Google. In this way, interest-based, personalized advertising messages that have been adapted to you on one end device (e.g. smartphone) depending on your previous usage and surfing behavior can also be displayed on another of your end devices (e.g. PC or tablet).

If you have a Google account, you can object to personalized advertising here.

The use of this service is based on your consent given in the consent tool in accordance with Art. 6 Para. 1 lit. a GDPR and § 25 Para. 1 TDDDG. The consent can be revoked at any time in the consent tool.

Further information and the data protection regulations can be found in the data protection declaration for Google Ads.

The data stored on Google is deleted by default within 14 months.

4e. Integrated YouTube videos

This page includes videos from third-party providers via the “YouTube” video portal of Google Ireland Limited as external content. By clicking on a video and using YouTube, your data can be processed by “YouTube”. If you are logged into your user account with “Google/YouTube” at the same time as you access the video, Google can track from which subpage of our website the video is accessed. If you want to prevent this data collection, please log out of YouTube before visiting our site or accessing the video. Details can be found in the terms of use of “YouTube” and the data protection guidelines of “Google”.

The legal basis for embedding YouTube videos is Art. 6 Para. 1 lit. a) GDPR, § 25 Para. 1 TDDDG if corresponding consent has been given.

4f. YouTube fan page

For the purpose of exchanging information with our customers and for the purpose of advertising new products or services as well as for general information about our company, we operate an account on the video platform “YouTube”, operated by Google. By clicking on a video or any link that leads to our YouTube account, your data will be processed by “YouTube” through the associated use of YouTube. If you are logged into your user account with “Google/YouTube” at the same time, Google can track from which subpage of our website the video is accessed or from which website you were redirected. If you want to prevent this data collection, please log out of YouTube before visiting our site or accessing the video. Details can be found in the terms of use of “YouTube” and the data protection guidelines of “Google”.

The legal basis for the use of YouTube is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest is justified by the fact that we can provide customers with video content via the video platform that may be of interest to them.

5. Facebook
5a. Facebook fan page
For the purpose of exchanging information with our customers and for the purpose of advertising new products or services as well as for general information about our company and its employees, we operate a so-called Facebook fan page. Customers and interested parties can join this by clicking the “Like” button and thus regularly receive information from our company in their news feed on Facebook. We would like to point out that you use this Facebook fan page and its functions under your own responsibility.
This applies in particular to the use of interactive functions, such as commenting, sharing, liking (see “Things you and others do and provide” in the Facebook data policy: https://www.facebook.com/policy), as well as information about the devices used by users (e.g. IP addresses, operating system, browser type, language settings, cookie data; see under “Device information” in the Facebook data policy statement: https://www.facebook.com/policy)
For the operation of our Facebook fan page, we use the technical platform and the services of Meta Platforms, Inc. 1 Hacker Way, Menlo Park, California 94025, USA (formerly Facebook Inc.).
As explained in the Facebook data policy under “How do we use this information?”, Facebook also collects and uses information to provide analysis services, so-called “page insights”, for page operators so that they can gain insights into how people interact with their pages and the content associated with them. This information is used to provide us as the operator of the Facebook pages with statistical information about the use of the Facebook fan page.
We have concluded a special agreement with Facebook (“Information on Page Insights”, https://www.facebook.com/legal/terms/page_controller_addendum), which in particular regulates which security measures Facebook must observe and in which Facebook has agreed to fulfill the rights of data subjects (i.e. users can, for example, send information or deletion requests directly to Facebook). The rights of users (in particular to information, deletion, objection and complaint to the responsible supervisory authority) are not restricted by the agreements with Facebook. Further information can be found in the “Information on Page Insights” (https://www.facebook.com/legal/terms/information_about_page_insights_data).
The data collected about you in this context is processed by Meta Platforms, Inc. 1 Hacker Way, Menlo Park, California 94025, USA (formerly Facebook Inc.) and may be transferred to countries outside the European Union. Facebook describes what information Facebook receives and how it is used in general terms in its data policy.
There you will also find information about how to contact Facebook and the setting options for advertisements. The data policy is available at the following link: https://www.facebook.com/privacy/explanation
In what way Facebook uses the data from visiting Facebook pages for its own purposes, to what extent activities on the Facebook fan page are assigned to individual users, how long Facebook stores this data and whether data from a visit to the Facebook fan page is passed on to third parties is not conclusively and clearly named by Facebook and is not known to us.
Facebook Ltd. is able to understand that you have visited our fan page and how you have used it based on the cookies it uses and the information it collects. This also applies to all other Facebook pages as well as when using the social share buttons, provided these are integrated on our website.
Based on this data, content or advertising can be offered to you in a tailored manner.
If you want to avoid this, you should log out of Facebook or deactivate the “stay logged in” function, delete the cookies on your device and close and restart your browser. In this way, Facebook information that can be used to directly identify you will be deleted.
This allows you to use our Facebook fan page without revealing your Facebook ID, but your IP address will also be recorded here and cookies will be set again. You can exclude the acceptance of cookies in your web browser. However, this may lead to impairments in functionality.

When you access interactive functions of the page (like, comment, share, messages, etc.), a Facebook login mask appears. After logging in, you are once again recognizable to Facebook as a specific user.
Information on how you can manage or delete information about you can be found in Facebook’s data policy.
Together with Facebook Ireland Ltd., we are jointly responsible for the collection or receipt as part of a transmission (but not the further processing) of “event data” that Facebook collects by means of the Facebook social plugins that are executed on our online offer or receives as part of a transmission for the following purposes:
– Advertising information that corresponds to the presumed interests of users and the display of content;
– Delivery of commercial and transaction-related;
– Improving ad delivery and personalization of features and content.
We have concluded a special agreement with Facebook (“Addendum for Controllers”, https://www.facebook.com/legal/controller_addendum), which in particular regulates which security measures Facebook must observe (https://www.facebook.com/legal/terms/data_security_terms) and in which Facebook has agreed to fulfill the rights of data subjects.
Note: If Facebook provides us with metrics, analyses and reports that do not contain any information on individual users and are anonymous for us, then this processing does not take place within the framework of joint responsibility, but on the basis of a data processing agreement (“Data Processing Conditions”, https://www.facebook.com/legal/terms/dataprocessing), the “Data Security Conditions” (https://www.facebook.com/legal/terms/data_security_terms) and, with regard to processing in the USA, on the basis of standard contractual clauses (“Facebook-EU Data Transfer Addendum, https://www.facebook.com/legal/EU_data_transfer_addendum).
Further information on Facebook and other social networks and how you can protect your data within the framework of the privacy settings can be found, for example, on youngdata.de.
The legal basis for the use of the Facebook fan page is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest is justified by the fact that we enable customers to have a direct exchange with our company via this social media service, also for complaints, and thus constantly optimize our service.
The rights of users are not restricted by the agreements with Facebook.
See section 11 below for your rights as a data subject.

5b. Instagram fan page
For the purpose of exchanging information with our customers and for the purpose of advertising new products or services as well as for general information about our company and its employees, we operate a fan page on the platform “Instagram”. This service is offered on the technical platform and by means of the services of Meta Platforms, Inc. 1 Hacker Way, Menlo Park, California 94025, USA (hereinafter “Instagram”).

Responsible for data processing of persons living outside the United States is Facebook Ireland Ltd. 4 Grand Canal Square Grand Canal Harbour Dublin 2 Ireland.

If you access the page via our website via the Instagram icon and are logged into your Instagram account at the same time, Instagram can directly assign the visit to our website to your Instagram account.

If you do not want Instagram to assign your data to your account, you must log out of Instagram before visiting our website.

When you access interactive functions of the page (like, comment, share, messages, etc.), an Instagram login mask appears. After logging in, you are once again recognizable to Instagram as a specific user. Information on how you can manage or delete information about you can be found in Instagram’s data policy.

We as the operator of our Instagram fan page do not collect and process any data beyond that. Further information on Instagram and other social networks and how you can protect your data within the framework of the privacy settings can be found, for example, on youngdata.de.

The legal basis for the use of the Instagram fan page is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest is justified by the fact that we enable customers to have a direct exchange with our company via this social media service, also for complaints, and thus constantly optimize our service.

5c. Facebook Pixel
We use the pixel of the social network of Meta Platforms, Inc. 1 Hacker Way, Menlo Park, California 94025, USA (formerly Facebook Inc.) for advertising measures on Facebook. If you are logged into your Facebook account, Facebook uses the information you provided during registration, your likes and your other user behavior to determine information such as your interests, on the basis of which you are shown customized advertisements, including those from our company. Likewise, we can make default settings based on the information categories specified by Facebook, which anonymous user groups should see our advertisements. Depending on the privacy settings you have set, your name may appear in our ads. More information about the name display in Facebook Ads can be found here. The same applies to so-called social ads, in which your friends are shown that you, for example, “like” our page. You can determine in the privacy settings and there in the advertising settings whether and how your name is displayed. You can also generally object to the display of Facebook ads via opt-out. In addition, you can set in your timeline for ads by clicking on “x” or “∨” whether and how our advertising will be displayed to you on Facebook in the future. Except in the case of your permission, Facebook will not pass on any personal data from you to us. We can only use Facebook’s general evaluation tools to understand how many users, divided according to general criteria not linked to personal data, have seen, clicked on our ad or later made a purchase in our online shop/an action on our website (conversion tracking by the so-called visitor action pixel). Please note that there is a possibility that Facebook will in turn assign this data to your account profile, over which we have no influence.

Data transfer to third countries: Your behavioral data, as well as the data evaluated via the visitor action pixel, are transmitted to the servers of Meta Platforms Inc. in the USA. The data transfer takes place on the basis of the adequacy decision (EU-US Data Framework) between the EU and the USA. In addition, we have concluded EU standard data protection clauses with Meta, with which Facebook proves to us that it complies with appropriate and suitable technical and organizational measures to protect your personal data. Further information on how Meta Platforms, Inc. processes personal data, including the legal basis on which Facebook Ireland relies, and the options for exercising the rights of data subjects vis-à-vis Facebook Ireland, can be found in the data policy of Facebook Ireland. The legal basis for the collection and storage of the data is Art. 6 Para. 1 lit. a) GDPR, § 25 TDDDG if corresponding consent has been given.

Objection
If you do not or no longer agree with this, you should make use of the above-mentioned opt-out option, with which you can prevent the display of advertisements on Facebook. On Facebook you will find further information on the data protection regulations and the functioning of Facebook advertisements.

6a. Microsoft (Bing) Advertising

This website uses Microsoft Advertising from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (“Microsoft”) and, in connection with this, the Universal Event Tracking (UET) tool. This allows us to track, among other things, whether an ad has led to a purchase / a conversion goal – so-called completion tracking. Remarketing target groups can also be created. This enables us to provide you with ads optimized for your interests on pages maintained and operated by Microsoft and Microsoft partner pages in the future, provided that you can be assigned to a corresponding user group. The cookies used in Universal Event Tracking (UET) remain on your computer for up to 180 days. A detailed description of the cookies used can be found in Microsoft’s detailed data protection guidelines. You can adjust or deactivate your settings for personalized advertising at Microsoft here. You can also object to the use of cookies in your browser settings by activating the “Block third-party cookies” function. However, blocking cookies may limit the usability of the pages you visit.

We have also implemented the Microsoft Audience Marketing and Microsoft Audience Ads add-ons. This enables us to divide our users into target groups using the Microsoft Audience Networks and thus individualize advertisements for individual users.

We also use the “Bing Ads Conversion Tracking” application to measure the reach of advertisements. It determines how successful individual advertising measures from us are on Bing. In this way, we want to develop and display advertising that is of interest to you and make our offer more attractive.

The legal basis for the collection and processing of your data is your express consent in accordance with Art. 6 Para. 1 lit. a) GDPR, § 25 Para. 1 TDDDG. The conditions for consent and its revocation have their legal basis in Art. 7 GDPR.

Data transfer to third countries: Your behavioral data, as well as the data evaluated via the visitor action pixel, are transmitted to the servers of Microsoft Corp. in the USA. The data transfer takes place on the basis of the adequacy decision (EU-US Data Framework) between the EU and the USA. We have concluded EU standard contractual clauses with Microsoft, with which Microsoft proves to us that it complies with appropriate and suitable technical and organizational measures to protect your personal data.

Further information on how Microsoft processes personal data, including the legal basis on which Microsoft relies and the options for exercising the rights of data subjects vis-à-vis Microsoft, can be found in the Microsoft data policy.

6b. Microsoft Clarity

This website uses the “Clarity” service from Microsoft Corporation, Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

Microsoft Clarity is a web analysis service that enables an analysis of the use of our website. The service creates a log of mouse movements and clicks with the intention of deriving potential improvements for the website from this. The information collected is transmitted to Microsoft Clarity and stored there. Microsoft reserves the right to use the collected information for its own advertising purposes. You can find more information here. Further information on data protection can be found in the Microsoft data protection declaration.

The legal basis for the use of Microsoft Clarity is, if consent is given, Art. 6 Para. 1 lit. a) GDPR, § 25 Para. 1 TDDDG. You give your consent by agreeing to the corresponding analysis cookies or all cookies. You can change your settings at any time.

If you want to object to the use of Microfort Clarity, you can use the objection option and the opt-out options specified by Microsoft under or delete all cookies in your browser.

7. Brevo
a. General
With our newsletter, we regularly inform you about event opportunities and catering offers. If you would like to receive the offered newsletter, in addition to ticking the corresponding option in the order process or in our newsletter form, we need a valid e-mail address from you. We will then send you a confirmation e-mail with which you can verify your e-mail address and your wish to receive the newsletter. To verify your registration, we save the IP address, both when you register and when you activate the confirmation link. We also save the date and time of registration, the e-mail address provided and the date and time of activation of the link in the confirmation e-mail to provide legally compliant proof of your registration.
You can object to receiving further newsletters at any time by clicking on a link at the end of each newsletter, without incurring any costs other than the transmission costs according to the basic rates. You can also send us an e-mail with the corresponding request to be removed from the mailing list at info@beefbusters.de.

b. Disclosure of data
We use the newsletter tool “Sendinblue” from Sendinblue SAS, 55 rue d’Amsterdam, 75008 Paris, France. An invisible graphic is built into the newsletter to track the opening rate. As soon as the newsletter is opened, this graphic is called up and it becomes recognizable who viewed the newsletter when and from where. To measure the click rate, recipients are directed to a tracking link for a fraction of a second before they reach the actually linked page. This tracking link usually runs via a domain of the provider.
We have also concluded a data processing agreement with Sendinblue, with which this company documents compliance with appropriate technical and organizational measures.
You can read about how Sendinblue stores and processes the data in the data protection declaration of Sendinblue SAS at https://de.sendinblue.com/legal/privacypolicy/.

The legal basis for the collection and processing of your data for newsletter marketing is your express consent in accordance with Art. 6 Para. 1 lit. a) GDPR. The conditions for consent and its revocation have their legal basis in Art. 7 GDPR.
The data will be deleted immediately after you unsubscribe from our newsletter.

8. Paypal
As part of the PayPal payment method, as well as PayPal via direct debit, PayPal credit card and PayPal via purchase on account, your data will be passed on to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg in the payment process. By using one of these payment options, you agree to the data collection by PayPal. You can find out exactly which data PayPal collects from you in their data protection principles https://www.paypal.com/de/webapps/mpp/ua/privacy-full. With the payment options direct debit, credit card or purchase on account via PayPal, a credit check is also carried out by PayPal S.à r.l. et Cie, S.C.A. You can find more information on this as well as on the credit agencies commissioned by PayPal in the appendix to the PayPal data protection principles https://www.paypal.com/de/webapps/mpp/ua/privacy-full Please note in particular that PayPal will carry out an identity and credit check https://www.paypal.com/de/webapps/mpp/ua/creditchk when paying without a PayPal account.

The legal basis for the transfer of your data to PayPal is Art. 6 Para. 1 lit. a) and Art. 6 Para. 1 lit. b) GDPR, as you consent to the use of the data by PayPal and, on the other hand, it is necessary to fulfill the contract when selecting the payment methods mentioned.

9. Pipedrive
We use “Pipedrive”, Pipedrive OÜ, Mustamäe tee 3a, 10615 Tallinn, Estonia as our CRM tool for processing and storing contact data.
When you contact us (via form or e-mail), the user’s information is processed in accordance with Art. 6 Para. 1 lit. b) GDPR to process the contact request and its handling. In order to process and answer your concerns and messages as quickly as possible, we use contact forms from our Customer-Relationship-Management -Tool Pipedrive. The data transmitted when filling out the form is sent to Pipedrive and stored there on Pipedrive’s servers. When filling out the form, a cookie is set to recognize whether a bot or a human is filling out the form. The locally responsible franchise partner receives access to end customer data stored in Pipedrive for the purpose of preparing offers and fulfilling contracts. For this purpose, we have concluded a contract with our franchise partners for joint responsibility.

The legal basis is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the efficient and quick processing of user inquiries, existing customer management and new customer business.
Further information can be found in the Pipedrive data protection declaration.

10. Mouseflow
This website uses Mouseflow, a web analysis tool from Mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark. The data processing serves the purpose of analyzing this website and its visitors. Data is collected and stored for marketing and optimization purposes. Usage profiles can be created from this data under a pseudonym. Cookies can be used for this. With the web analysis tool Mouseflow, randomly selected individual visits (only with anonymized IP address) are recorded. This creates a log of mouse movements and clicks with the intention of playing back individual website visits on a random basis and deriving potential improvements for the website from this. The data collected with Mouseflow will not be used to personally identify the visitor to this website without the separately granted consent of the data subject and will not be merged with personal data about the bearer of the pseudonym. The processing takes place on the basis of Art. 6 (1) f) GDPR from the legitimate interest in direct customer communication and in the needs-based design of the website. You have the right to object to this processing of personal data concerning you based on Art. 6 (1) f GDPR at any time for reasons arising from your particular situation. To do this, you can deactivate recording on all websites that use Mouseflow globally for your currently used browser under the following link. https://mouseflow.de/opt-out/

11. Rights of data subjects
a. Right to object
If we process your data to protect legitimate interests (Art. 6 Para. 1 lit. f) GDPR), you can object to this processing for reasons arising from your particular situation. We will then no longer process your personal data, unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims.
In the event of an objection to data processing for the purpose of direct advertising, processing for this purpose will no longer take place.

b. Right to information
You have the right to request confirmation from us as to whether we are processing personal data relating to you and, if so, a right to information about the personal data and related information in accordance with Art. 15 GDPR.

c. Right to rectification
You have the right to request that we correct or complete any incorrect or incomplete personal data concerning you without delay in accordance with Art. 16 GDPR.

d. Right to erasure
You have the right to request that we delete personal data concerning you immediately and we are obliged to delete it immediately if one of the reasons stated in Art. 17 GDPR applies.

e. Right to restriction of processing
You have the right to request that we restrict the processing of personal data concerning you if one of the requirements stated in Art. 18 GDPR is met.

f. Right to data portability
You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format, and you have the right to request that we transmit this data to another controller, provided that this is technically feasible.

Google reviews

J. Leuker

vor einem Monat

"Habe die Beefbusters für die Überraschungsparty meines Mannes zum 40. Geburtstag gebucht und definitiv nicht bereut. Mega Team und richtig leckeres Essen. Sehr große Auswahl und innerhalb von einer Minute war die Bestellung pro Person fertig. Top vorbereitet! Selbst unser Hund, der nie essen vom Tisch klaut, ist bei den Burgern schwach geworden 😂 Ganz lieben Dank an Stefan und sein Team. Werde definitiv wieder auf euch zurück kommen!!!"

S. Kohshnaw

vor 4 Monaten

"Richtig geiles Catering! Geile, kreative Burger - Super leckere Pommes und der Blueberry Cheesecake aber auch der Brownie mit Karamell ein Traum! Das Team ist auch einfach Klasse mit einem geilen Oldschool Hip Hop Musik Geschmack!"

I. Gnito

"Vom ersten Beratungsgespräch an höchst professionell! Der Kontakt war durchweg sehr freundlich, und die Abwicklung verlief zügig und unkompliziert. Am Tag der Veranstaltung war das Team frühzeitig vor Ort, baute auf und bereitete alles vor. Als der Ansturm auf den Foodtruck begann, zeigte sich, wie gut die beiden „Foodartists“ organisiert waren – es gab nahezu keine Wartezeiten! Die Auswahl an Speisen war hervorragend: Die verschiedenen Burger waren durchweg sehr lecker, ebenso die klassischen sowie die Süßkartoffel-Pommes. Unsere Gäste waren begeistert und lobten das eingespielte, sympathische Team. Auch der Abbau lief reibungslos – der Platz wurde sauber und ordentlich hinterlassen. Fazit: Wir sind rundum begeistert und würden jederzeit wieder buchen!"

"Moin Beefbusters Team Hamburg, wir sind sehr zufrieden, die Gäste fanden den Foodtruck super, es hat allen sehr gut geschmeckt. Besonders Misses Meatless ist sehr gut angekommen. Euer Team war super. Was will man mehr als Gastgeber …"

G. Gantefort

vor 2 Monaten

"Die Beefbusters waren zu unserem diesjährigen Dart & Konzept Oktoberfest mit Dart-Turnier gebucht! Sehr empfehlenswert! Sehr gute Kommunikation im Voraus, extrem leckere Burger in ausreichenden Mengen, super abwicklung im Nachgang! Wir sehen uns sicher wieder! Liebe Grüße Bad & Konzept"