top of page

Privacy policy

General

1. your personal data in the sense of Art. 4 No. 1 DSGVO (e.g. IP address, name, e-mail address and telephone number, payment information) will be processed by us only in accordance with the provisions of German data protection law and taking into account the European General Data Protection Regulation (DSGVO). The following regulations inform you about the type, scope and purpose of the collection, processing and use of personal data.

2. processing within the meaning of Art. 4 No. 2 DSGVO of personal data is lawful pursuant to Art. 6 DSGVO if one of the following conditions is met:

(a) the data subject has given consent to the processing of personal data relating to him or her for one or more specific purposes;

(b) processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the data subject's request;

(c) processing is necessary for compliance with a legal obligation to which the controller is subject;

(d) processing is necessary in order to protect the vital interests of the data subject or another natural person;

(e) processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

(f) processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, in particular where the data subject is a child.

3. the processing of special personal data (e.g. health data) within the meaning of Article 9 (1) of the GDPR is lawful, in particular pursuant to Article 9 (2) of the GDPR, if one of the following conditions is met:
- there is an explicit consent of the person;
- processing is necessary for the establishment, exercise or defense of legal claims or in the case of actions by the courts in the course of their judicial activities.

4. automatic decision-making or profiling with regard to personal data within the meaning of Art. 22 DSGVO does not take place.

5. the operator ensures the security of the data in accordance with Art. 32 DSGVO, taking into account the principle of proportionality, through appropriate technical measures.

6. if, contrary to expectations, a breach of data protection occurs, the competent supervisory authority will be notified in accordance with Art. 33 DSGVO, as well as the data subject in accordance with Art. 34 DSGVO.

 

Scope

 

This data protection declaration only applies to our websites. If you are forwarded to other pages via links on our pages, please inform yourself there about the respective handling of your data.

Duration of data storage

The duration of the storage of the data transmitted by you depends on the legal storage obligations. According to commercial and tax laws, invoices must be kept for a period of 10 years.

Transfer of data to third parties

A transfer of data transmitted within the framework of the contractual relationship to third parties (Art. 4 No. 10 DSGVO), only takes place if you have expressly declared your consent (Art. 4 No. 11 DSGVO) or the transfer is necessary for the performance of the contract. The consent can be revoked informally at any time. Data collected by visiting the website will only be collected by third parties who are explicitly named below.

Person responsible in the sense of the DSGVO

The responsible person within the meaning of the General Data Protection Regulation (DSGVO), as well as other data protection laws applicable in the European Union and other provisions of a data protection nature is:

Stefanie Kling
Albrechtstr. 22
80636 Munich
Germany
Phone: +49 (0) 175 8036460
E-Mail: mail@stefaniekling.com

Cookies

 

We use cookies on our site. These are small files that are automatically created by your browser and stored on your end device (PC, laptop, tablet, smartphone or similar) when you visit our site. Cookies do not cause any damage to your end device, do not contain viruses, Trojans or other malware. In the cookie, information is stored that arises in each case in connection with the specific end device used. This does not mean, however, that we gain direct knowledge of your identity.

The use of cookies serves on the one hand to make the use of our offer more pleasant for you. For example, we use so-called session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.

In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your terminal device for a certain fixed period of time. If you visit our site again to use our services, it is automatically recognized that you have already been with us and which entries and settings you have made so that you do not have to enter them again.

These cookies enable us to automatically recognize that you have already been with us when you visit our site again. These cookies are automatically deleted after a defined period of time. The data processed by cookies is necessary for the aforementioned purposes to protect our legitimate interests and those of third parties in accordance with Art. 6 (1) p. 1 lit. f DSGVO. Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a notice always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.

Storage of access data in log files

You can visit our website without providing any personal information.

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

browser type/browser version

Operating system used

referrer URL

Host name of the accessing computer

Time of the server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.

The purpose of the processing results from our legitimate interest within the meaning of Art. 6 (1) p. 1 lit. f) DSGVO.

An order processing contract has been concluded with our hoster.

 

Google Web Fonts

 

External fonts, Google Fonts, are used on these web pages. Google Fonts is a service of Google Inc ("Google"). The integration of these web fonts is done by a server call, usually a Google server in the USA. This transmits to the server which of our Internet pages you have visited. Also, the IP address of the browser of the end device of the visitor of these Internet pages is stored by Google.

The use of Google Fonts serves to improve the visual presentation of our website and this therefore constitutes a legitimate interest within the meaning of Art. 6 (1) sentence 1 lit. f) DSGVO.

You can find more information in Google's privacy policy, which you can access here:

https://www.google.com/fonts#AboutPlace:about
https://www.google.com/policies/privacy/

YouTube with enhanced data protection

Our website uses plugins of the website YouTube. The operator of the pages is YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA. 

We use YouTube in extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. However, the transfer of data to YouTube partners is not necessarily excluded by the extended data protection mode. Thus, YouTube - regardless of whether you watch a video - establishes a connection to the Google DoubleClick network.

As soon as you start a YouTube video on our website, a connection to YouTube's servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

Furthermore, YouTube can save various cookies on your end device after starting a video. With the help of these cookies, YouTube can obtain information about visitors to our website. This information is used, among other things, to collect video statistics, improve the user experience and prevent fraud attempts. Cookies remain on your terminal device until you delete them.

If necessary, further data processing operations may be triggered after the start of a YouTube video, over which we have no control.

YouTube is used in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO.

You can find more information about data protection at YouTube in their privacy policy at: https://policies.google.com/privacy?hl=de

 

Vimeo

 

Our website uses plugins of the video portal Vimeo. The provider is Vimeo Inc, 555 West 18th Street, New York, New York 10011, USA.

When you visit one of our pages equipped with a Vimeo plugin, a connection to the Vimeo servers is established. In the process, the Vimeo server is informed which of our pages you have visited. In addition, Vimeo obtains your IP address. This also applies if you are not logged in to Vimeo or do not have an account with Vimeo. The information collected by Vimeo is transmitted to the Vimeo server in the USA.

If you are logged into your Vimeo account, you enable Vimeo to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your Vimeo account.

The use of Vimeo is in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO.

For more information on the handling of user data, please refer to the Vimeo privacy policy at: https://vimeo.com/privacy

 

Instagram

 

On our pages, functions of the service Instagram are integrated. These functions are offered by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA integrated. If you are logged into your Instagram account, you can link the content of our pages to your Instagram profile by clicking on the Instagram button. This allows Instagram to associate the visit to our pages with your user account. We would like to point out that we, as the provider of the pages, have no knowledge of the content of the transmitted data or its use by Instagram.

For more information, please refer to the privacy policy of Instagram:
https://instagram.com/about/legal/privacy/

 

Comments and ratings

When users submit reviews in the store or other contributions, their IP addresses are stored. This is done for the security of the provider, in case someone writes illegal content (including insults, pornographic or protected material). In this case, the provider itself can be prosecuted for the comment or post and is therefore interested in the identity of the author. The collection of this data is justified by Art. 6 para. 1 p. 1 lit. f) DSGVO.

 

Contact form

 

When using the contact form offered on these pages, the information you enter is transmitted and stored for the purpose of responding to your request. The data will not be passed on to third parties. The legitimacy of the use of the form results from Art. 6 para. 1 sentence 1 lit. f) DSGVO.

 

Inquiry by e-mail, telephone or fax

 

If you contact us by e-mail, telephone or fax, your inquiry including all resulting personal data (name, inquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.

The processing of this data is based on Art. 6 (1) lit. b DSGVO, if your request is related to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 (1) (a) DSGVO) and / or on our legitimate interests (Art. 6 (1) (f) DSGVO), as we have a legitimate interest in the effective processing of requests sent to us.

The data you send to us via contact requests will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies (e.g. after we have completed processing your request). Mandatory legal provisions - in particular legal retention periods - remain unaffected.

 

Social media links

 

We have our own social media pages with the third-party providers that can be reached via links from this website. By using the links, you can access the respective websites of the third-party providers (e.g. Facebook, LinkedIn, Instagram, YouTube, Vimeo) and also share our content. Here, no data transfer takes place by calling up our website. As soon as you have accessed the page of the third-party provider, you are in the area of responsibility of the respective third-party provider, so that their privacy policy or their statements on data use also apply. We have no influence on this, but we recommend that you log out of the respective third-party provider before using a corresponding link in order to avoid unnecessary data transfer, so that usage profiles cannot be created by the third-party provider simply by using the link.

 

Newsletter

 

On our website, we offer you the opportunity to subscribe to our newsletter. With this newsletter we inform you about our offers at regular intervals. To receive our newsletter, you need a valid e-mail address. We will check the e-mail address you have entered to ensure that you are indeed the owner of the e-mail address provided or that the owner is authorized to receive the newsletter. With your registration for our newsletter, we will store your IP address and the date and time of your registration. This serves as a safeguard on our part in the event that a third party misuses your e-mail address and subscribes to our newsletter without your knowledge. No other data is collected on our part. The data collected in this way is used exclusively for the purpose of receiving our newsletter. It will not be passed on to third parties. A comparison of the data collected in this way with data that may be collected by other components of our site also does not take place. You can cancel your subscription to this newsletter at any time. Details on this can be found in the confirmation email as well as in each individual newsletter.

The dispatch of the newsletter and the storage of your e-mail address are justified by your consent in accordance with Art. 6 para. 1 sentence 1 lit. a) DSGVO.

Dispatch via Mailchimp
This website uses Mailchimp to send newsletters. The provider is the Rocket Scienece Group, Atlanta, Georgia, United States.

Mailchimp is a service that can be used, among other things, to organize and analyze the sending of newsletters. The data you enter for the purpose of receiving newsletters is stored on Mailchimp's servers.

Data analysis by Mailchimp
When we send newsletters using Mailchimp, we can determine whether a newsletter message has been opened and which links, if any, have been clicked.
 

Legal basis


The data processing is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.

 

Storage period


The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of Mailchimp after you unsubscribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this.

 

Security of your data / SSL encryption

 

In accordance with the legal regulation according to § 13 para. 7 TMG, this site uses SSL encryption, recognizable by a lock symbol in the address bar of your browser. When SSL encryption is activated, transmitted data cannot be read by third parties.

As a rule, this is a 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is encrypted by the closed key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organizational security measures (TOM) to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

 

Rights of the user

 

You can request information about the personal data stored about you at any time and free of charge. Your rights also include confirmation, correction, restriction, blocking and deletion of such data and the provision of a copy of the data, in a form suitable for transmission, as well as the revocation of consent given and the objection. Legal storage obligations remain unaffected by this.

In this context, your rights arise in particular from the following standards of the GDPR:

Article 7 (3) - Right to withdraw consent granted under data protection law.

Article 12 - Transparent information, communication and modalities for the exercise of the data subject's rights.

Article 13 - Information obligation when personal data are collected from the data subject

Article 14 - Information obligation when personal data have not been collected from the data subject

Article 15 - Data subject's right of access, confirmation and supply of a copy of personal data

Article 16 - Right to rectification

Article 17 - Right to erasure ("right to be forgotten")

Article 18 - Right to restriction of processing

Article 19 - Obligation to give notice in connection with rectification or erasure of personal data or restriction of processing

Article 20 - right to data portability

Article 21 - Right to object

Article 22 - right not to be subject to a decision based solely on automated processing, including profiling

Article 77 - Right to lodge a complaint with a supervisory authority

To exercise your rights (with the exception of Article 77 of the GDPR), please contact the office mentioned under the item "Responsible party in terms of the GDPR" (e.g. by e-mail).

 

Competent supervisory authority:

The Federal Commissioner for Data Protection and Freedom of Information.

Husarenstr. 30
53117 Bonn

Phone: +49 (0)228 997799-0
Fax: +49 (0)228 997799-5550
E-mail: redaktion@bfdi.bund.de

Homepage: https://bfdi.bund.de
(Please check if the contact details are still up to date before contacting the above mentioned website)

bottom of page