4. Log-in and authentication through third parties
4.1. Users can log in by using authentication services of Third-party Providers (hereinafter referred to as “authentication by a third-party”). Particularly Facebook or Google can be possible authentication service providers.
4.2. As a requirement for the authentication through a third-party, users should be registered at the respective third party and enter the necessary login details in the appropriate web formula or should be already logged in to the third party.
4.3. In the context of log-in, we receive a user ID with the information under which the user with this ID is logged in and an ID that cannot be further used by the service provider. Whether we receive further data depends only on the user who uses the authentication by a Third-party Provider, the data that is selected to be released in the context of the authentication, and which data has been authorized by the user in the privacy or other settings of the user account at the Third-party Provider. The data can differ, depending on the provider and the selections of the user.
In case of Facebook, this is the - so called - “Public Profile Information”, that can be seen by everyone. This includes the name, profile and cover picture, gender, networks (i.e., school or working place), whether or not you are, according to your Facebook data, 21 years of age or older (only if these data elements are viewable by the public according to your Facebook privacy settings), user name (Facebook URL) and user identification number (Facebook ID).
4.4. The password that has been entered in the context of the authentication by a Third-party Provider cannot be seen by us, neither can it be saved by the service provider.
4.5. The users are asked to keep in mind that their data, which we save, can be compared and synchronized with their user account at the Third-party Provider automatically. There is no obligation however for us to update the data.
4.6. In the case that users decide that they do not wish to further use the connection of their user account at the Third-party Provider for the authentication by a Third-party Provider, they must cancel this connection within their user account at the Third-party Provider. If the users wish to delete their data we save, they must cancel their account at our Service.