SpiroFit Cookie Policy
Valid from: [01.08.2025]
1. Introduction
This Cookie Policy explains how SpiroFit (“we,” “us,” or “our”) uses cookies and similar tracking technologies on the website [www.spirofit.com] and all associated subpages (together, the “Website”). It describes what these technologies are, why we use them, what data they collect, how that data is used and shared, and how you can control or withdraw your consent where required. This is provided in accordance with the EU General Data Protection Regulation (GDPR), the ePrivacy Directive, and applicable national data protection laws.
2. What Are Cookies and Similar Technologies?
Cookies are small text files placed on your device (computer, smartphone, or tablet) when you visit a website. Similar technologies include web beacons/pixels, local storage, and device identifiers. These can store or access information on your device and help the Website recognize your device, remember preferences, measure usage, and deliver relevant content or advertising.
Some cookies are session-based and deleted when you close your browser (“session cookies”), others remain for a defined period or until you delete them manually (“persistent cookies”). Cookies usually contain a unique identifier that distinguishes your browser from others, but they do not identify you personally unless combined with other information.
3. Legal Basis for Processing
- Strictly necessary cookies are essential for the operation of the Website and are processed based on our legitimate interest in providing a functional service (Art. 6(1)(f) GDPR).
- All other cookies (e.g., analytics, advertising, personalization) are placed only after you have given your explicit consent (Art. 6(1)(a) GDPR). Consent is voluntary, informed, specific, and can be withdrawn at any time with future effect.
4. Categories of Cookies We Use
a) Strictly Necessary Cookies
These cookies are required for the basic functionality of the Website. They enable core features such as security, session management, language selection, and form functionality. They do not require your consent and cannot be switched off via cookie preferences without impairing the service.
Example purposes:
- Keeping you logged in during a session
- Preventing fraud and ensuring site security
- Remembering settings essential to navigation
b) Performance & Analytics Cookies
These cookies collect information about how visitors use the Website (e.g., which pages are most visited, how users navigate) to help us improve performance and usability. Data is typically aggregated and may include anonymized usage statistics.
c) Functional Cookies
Functional cookies allow the Website to remember choices you make (such as language or region), and provide enhanced, personalized features.
d) Advertising & Targeting Cookies
These cookies track your browsing behavior across websites to help build a profile of your interests and deliver relevant advertising. They also measure the effectiveness of advertising campaigns.
5. Detailed Cookie Table
With this cookie policy, we would like to explain what cookies and cookie-like technologies are, how we and other service provider use them on this website, what information they collect, for how long and for what purposes we use them.
Table of contents
- Controller of the website
- Addition to the privacy policy
- What are cookies and similar technologies?
- What is the legal basis for setting/reading cookies?
- What rights does the website visitor have?
- How to manage cookies in a browser?
- What types of cookies exist?
- Who can set cookies on this website?
- Which cookies are used on this website?
Controller of the website
- Provider: SENDSOR GmbH, Am Brucker Feld 7, 85567 Grafing, Germany
- Email: info@sendsor.de
- Phone: +49 8092 863 363
- Contact form: spirofit.de/contacts/
Addition to the privacy policy
This cookie policy is a supplement to this website's privacy policy. The cookie policy specifies how a website uses cookies and what data it collects through them, while the privacy policy is a more comprehensive overview of all data processing activities on the website and beyond.
What are cookies and similar technologies?
Cookies are small pieces of information similar to text files that can be stored and read on the end device. They serve various purposes, including maintaining basic functionalities of the website, security and privacy, providing optional functions of the website, collecting statistic data on visitor flows and providing marketing systems. Practical examples of what can be stored in cookies are the storage of login status in user accounts, the content of shopping baskets in e-commerce platforms, or a user ID for tracking behavior on the website.
The information can technically be stored in various ways. The best-known examples of this are HTTP cookies and cookie-like technologies like local storage, session storage or IndexedDB. Each type of storage has different properties, which determine the technical handling, accessibility and controllers authorized to access the information. All these types of storage are usually summarized under the term "cookies" and are therefore called as such in this cookie policy.
What is the legal basis for setting/reading cookies?
The setting and reading of cookies in the European Union (EU) and the European Economic Area (EEA) is in accordance with Art. 5 (3) ePrivacy Directive and Recital 66 ePrivacy Directive only permitted if a user has given his consent on the basis of comprehensive information about the purposes of the processing. The website operator may also set cookies if they are strictly necessary to provide you as a user with the expressly requested service, e.g. the basic content of this website or other strictly necessary cookies for basic functionality of the website to be displayed to you without your consent.
The setting and reading of cookies in Switzerland is in accordance with Art. 45c (b) FMG (Fernmeldegesetz) only permitted if a user has the option to object the processing of data on the basis of comprehensive information about the purposes of the processing. In exceptional cases, consent must be obtained for the processing of personal data in cookies in Switzerland.
What rights does the website visitor have?
Services and their cookies can be set and read on the legal basis of your consent or a legitimate interest. When you first visited this website, you were asked for your consent and you had the opportunity to object to the use of certain services. We explained which legal basis is used for which service in our consent dialog.
You have the right to view the history of your decisions, change your privacy settings, object to the use of services and revoke your consent at any time. Below you find possibilities to exercise your rights:
How to manage cookies in a browser?
- How to remove cookies in a browser: To remove cookies from your device, you can clear the browsing data in the settings of your browser. This action will remove all cookies from all websites you've visited, potentially including saved login details and site preferences. In some browsers, you can just delete the cookies and similar data without deleting the whole browsing history.
- How to control cookies in a browser: For more granular control over cookies specific to certain websites, navigate to the privacy and cookie settings within your used browser. Here, you can adjust preferences related to individual sites' cookie usage.
- How to block cookies in a browser: It's possible to configure most modern browsers in their settings to block all cookies from being placed on your device. But blocking cookies could lead to certain services and functionalities not functioning correctly, e.g. logins as a user. You can also use extensions for many browsers which can block the setting of cookies on websites.
- How to manage cookies on this website: To tailor your preferences regarding cookies on this website, you can change your preferences at any time by clicking on the link in the section "Rights of the website visitor".
You can find more information on the handling of cookies devowl.io/rcb/cookie-handling/.
What types of cookies exist?
- Essential cookies are indispensable for the basic functionality of a website and enable functions such as saving login information or access to secure areas of the site. These include, for example, security cookies, which can identify a bot that is not wanted on the website by storing an authentication key in a cookie.
- Functional cookies improve the user experience by storing information and preferences such as language settings or appearance settings of the website to provide personalized. This includes, for example, preference cookies that store the user's preferred video quality on a website.
- Statistics cookies collect data about the use of a website to gain insights into user behavior and optimize the performance of the site. This includes, for example, a randomly assigned user ID that makes it possible to attribute whether you have visited a subpage of the website.
- Marketing cookies are used to track user behavior across different websites and to display personalized advertising based on the interests and surfing behavior of users. This includes, for example, advertising cookies that store an interaction with an advertisement on the website and pass it on to advertisers or a chat system for pre-sale questions and customer support.
Who can set cookies on this website?
On this website, both the operator of the website and third-party services which are used on this website may set cookies and access its content. Who can access which cookies and their content differs between first-party and third-party cookies. First-party cookies are created by the visited website and can only be read by the website operator and integrated third-party services on this website. Third-party cookies are set by usually third-party services on other domains, can be read on all websites on which the service that controls the domain is embedded and, for example, used by advertising networks to track user behavior across different websites and offer personalized advertising.
Which cookies are used on this website?
| Category | Technical cookie name | Technical cookie host | Service | Duration | Type | Purpose |
|---|---|---|---|---|---|---|
| Essential | wp-wpml_current_language | spirofit.de | WPML | 1 day | HTTP Cookie | Current language |
| Essential | wp-wpml_current_admin_language_* | spirofit.de | WPML | - | IndexedDB | WordPress administration area language |
| Essential | _icl_visitor_lang_js | spirofit.de | WPML | Session | HTTP Cookie | Language from which there was a redirect |
| Essential | wpml_browser_redirect_test | spirofit.de | WPML | Session | HTTP Cookie | Checks whether cookies can be set or not |
| Essential | real_cookie_banner* | .spirofit.de | Real Cookie Banner | 365 days | HTTP Cookie | Unique identifier for the consent, but not for the website visitor. Revision hash for settings of cookie banner (texts, colors, features, service groups, services, content blockers etc.). IDs for consented services and service groups. |
| Essential | real_cookie_banner*-tcf | .spirofit.de | Real Cookie Banner | 365 days | HTTP Cookie | Consents collected under TCF stored in TC String format, including TCF vendors, purposes, special purposes, features, and special features. |
| Essential | real_cookie_banner*-gcm | .spirofit.de | Real Cookie Banner | 365 days | HTTP Cookie | Consents into consent types (purposes) collected under Google Consent Mode stored for all Google Consent Mode compatible services. |
| Essential | real_cookie_banner-test | .spirofit.de | Real Cookie Banner | 365 days | HTTP Cookie | Cookie set to test HTTP cookie functionality. Deleted immediately after test. |
| Essential | real_cookie_banner* | https://spirofit.de | Real Cookie Banner | - | Local Storage | Unique identifier for the consent, but not for the website visitor. Revision hash for settings of cookie banner (texts, colors, features, service groups, services, content blockers etc.). IDs for consented services and service groups. Is only stored until consent is documented on the website server. |
| Essential | real_cookie_banner*-tcf | https://spirofit.de | Real Cookie Banner | - | Local Storage | Consents collected under TCF stored in TC String format, including TCF vendors, purposes, special purposes, features, and special features. Is only stored until consent is documented on the website server. |
| Essential | real_cookie_banner*-gcm | https://spirofit.de | Real Cookie Banner | - | Local Storage | Consents collected under Google Consent Mode stored in consent types (purposes) for all Google Consent Mode compatible services. Is only stored until consent is documented on the website server. |
| Essential | real_cookie_banner-consent-queue* | https://spirofit.de | Real Cookie Banner | - | Local Storage | Local caching of selection in cookie banner until server documents consent; documentation periodic or at page switches attempted if server is unavailable or overloaded. |
| Functional | spark_geo_country_v1 | spirofit.de | MaxMind GeoLite2 | - | Local Storage | Saving a specific price display currency depending on the user's country |
| Functional | pigeon_state | https://www.instagram.com | - | Local Storage | - | |
| Functional | mw_worker_ready | https://www.instagram.com | - | Local Storage | - | |
| Functional | has_interop_upgraded | https://www.instagram.com | - | Local Storage | - | |
| Functional | Session | https://www.instagram.com | - | Local Storage | - | |
| Functional | armadillo_msgr_mutex | https://www.instagram.com | - | Local Storage | - | |
| Functional | hb_timestamp | https://www.instagram.com | - | Local Storage | - | |
| Functional | pixel_fire_ts | https://www.instagram.com | - | Local Storage | - | |
| Functional | armadillo_msgr_local_takeover | https://www.instagram.com | - | Local Storage | - | |
| Functional | cu_sessions | https://www.instagram.com | - | Local Storage | - | |
| Functional | banzai:last_storage_flush | https://www.instagram.com | - | Local Storage | - | |
| Functional | fr | https://www.instagram.com | - | Local Storage | - | |
| Functional | cu_version | https://www.instagram.com | - | Local Storage | - | |
| Functional | _oz_bandwidthAndTTFBSamples | https://www.instagram.com | - | Local Storage | - | |
| Functional | armadillo_msgr_data_loss_stats | https://www.instagram.com | - | Local Storage | - | |
| Functional | falco_queue_log* | https://www.instagram.com | - | Local Storage | - | |
| Functional | _oz_bandwidthEstimate | https://www.instagram.com | - | Local Storage | - | |
| Functional | falco_queue_critical* | https://www.instagram.com | - | Local Storage | - | |
| Functional | rur | .instagram.com | Session | HTTP Cookie | Information on session management for the region or server cluster to which the user is assigned | |
| Functional | shbid | .instagram.com | 8 days | HTTP Cookie | Unique session ID for storing sessions on the server side | |
| Functional | shbts | .instagram.com | 8 days | HTTP Cookie | Time at which the session ID was created to maintain the session | |
| Functional | sessionid | .instagram.com | 13 months | HTTP Cookie | Unique session ID for authentication and user login management | |
| Functional | ds_user_id | .instagram.com | 4 months | HTTP Cookie | Unique user ID of a logged-in Instagram user, for identification during the session | |
| Functional | csrftoken | .instagram.com | 13 months | HTTP Cookie | Verification of authorization using a unique token to prevent cross-site request forgery (CSRF) attacks | |
| Functional | mid | .instagram.com | 14 months | HTTP Cookie | Unique user ID for user recognition | |
| Functional | ig_did | .instagram.com | 13 months | HTTP Cookie | Unique device ID for device recognition | |
| Functional | datr | .instagram.com | 14 months | HTTP Cookie | Identifies the browser and helps to identify browsers used by malicious actors and to prevent cyber-security attacks | |
| Functional | wd | .instagram.com | 8 days | HTTP Cookie | Dimensions of the browser window to provide an optimal experience on the device screen | |
| Functional | _osm_totp_token | .openstreetmap.org | OpenStreetMap | 2 hours | HTTP Cookie | - |
| Functional | _pk_ses.* | www.openstreetmap.org | OpenStreetMap | 32 minutes | HTTP Cookie | - |
| Functional | _osm_location | www.openstreetmap.org | OpenStreetMap | 14 months | HTTP Cookie | Latitude and longitude as well as zoom level of the location selected on the map |
| Functional | _osm_session | www.openstreetmap.org | OpenStreetMap | Session | HTTP Cookie | Unique ID for the session |
| Functional | _pk_id.* | www.openstreetmap.org | OpenStreetMap | 1 month | HTTP Cookie | Unique ID for recognizing the user for tracking |
| Functional | _pk_ref.* | www.openstreetmap.org | OpenStreetMap | 8 days | HTTP Cookie | Referred URL |
| Statistics | _ga | .spirofit.de | Google Analytics | 24 months | HTTP Cookie | User ID for analyzing general user behavior across different websites |
| Statistics | _ga_* | .spirofit.de | Google Analytics | 24 months | HTTP Cookie | User ID for analyzing user behavior on this website for reports on the use of the website |
The cookie policy was last updated on November 8, 2025.
6. Third-Party Cookies and Recipients
Some cookies are set by third parties (i.e., entities other than SpiroFit) such as analytics services, advertising networks, or social media platforms. These third-party providers may collect, process, and store information about your usage of the Website as part of their services.
Examples of potential third-party categories:
- Analytics providers (e.g., Google Analytics)
- Advertising and ad measurement vendors
- Social media tracking mechanisms (if embedded)
You should consult the third parties’ own privacy policies for details on their processing, including any data transfers.
7. International Data Transfers
Some third parties may process data in countries outside the European Economic Area (EEA), including the United States. When we transfer personal data to such third parties, we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses (SCCs) adopted or approved by the European Commission, or
- Transfers to jurisdictions with an adequacy decision.
Despite these measures, data protection regimes outside the EEA may differ, and data may be subject to access by public authorities under local law. You can request further information about the safeguards in place by contacting us (see Section XIII).
8. Consent and How You Control Cookies
Upon your first visit, a cookie banner appears giving you the option to:
- Accept all cookies,
- Reject non-essential cookies, or
- Customize your preferences via the dedicated “Cookie Settings” or equivalent control.
Non-essential cookies (analytics, functional beyond necessity, advertising) will only be activated after you have explicitly opted in. You can withdraw or modify your consent at any time by using the persistent “Cookie Settings” link in the website footer or by clearing/deleting cookies as described below.
Withdrawing consent does not affect the lawfulness of processing based on consent prior to withdrawal.
9. Managing Cookies in Your Browser
You can manage, block, or delete cookies through your browser settings. The location of these settings varies by browser (typically under “Settings,” “Preferences,” or “Privacy”).
Please be aware that disabling or deleting cookies may limit functionality or prevent parts of the Website from working correctly.
For opting out of certain types of interest-based advertising more broadly, you may also visit:
- YourOnlineChoices: www.youronlinechoices.com
- Network Advertising Project opt-out: optout.networkadvertising.org
10. Purpose-Specific Use Cases
We use cookies and tracking data for the following purposes (illustrative, adjust to actual usage):
- Personalized offers and advertising – If you have consented, we process your browsing behavior, IP address, and unique identifiers to serve personalized content, promotions, and ads tailored to your interests.
- Website performance and improvement – We collect aggregate usage data to understand how the site is used and make enhancements (e.g., layout tweaks, feature prioritization).
- Market research and audience insights – Cookies help us analyze demographics and behavior trends to better align our services with user needs.
- Measurement of campaigns – To evaluate how marketing and advertising campaigns perform, including conversion tracking and attribution.
11. Data Retention
We retain cookie-related data only as long as necessary for the purpose for which it was collected, or as required by law. Specific retention periods are indicated in the cookie table above. In some cases, aggregated or anonymized data derived from cookies may be kept longer for analysis purposes.
12. Security
We implement appropriate technical and organizational measures to protect the data collected through cookies from unauthorized access, alteration, disclosure, or destruction.
13. Your Rights
As a data subject under GDPR, you have the following rights, subject to applicable legal limitations:
- Right of access to personal data we hold about you
- Right to rectification of inaccurate data
- Right to erasure (the “right to be forgotten”)
- Right to restriction of processing
- Right to data portability
- Right to object to processing based on legitimate interests
- Right to withdraw consent where consent is the basis
- Right to lodge a complaint with a supervisory authority
14. Changes to This Policy
We may update this Cookie Policy from time to time to reflect changes in our practices or legal requirements. The “Last updated” date at the top will indicate when material changes were made.
15. Contact
If you have questions about this Cookie Policy or wish to exercise your rights, please contact:
SENDSOR GmbH
Am Brucker Feld 7
85567 Grafing
Phone: +49 8092 863 363 1
E-Mail: info@sendsor.de