With this data protection declaration, we would like to inform you about the types of your personal data (hereinafter referred to collectively as “data”) that we process, for what purposes and to what extent, and how we use this data. We treat your personal data confidentially and in accordance with the statutory data protection regulations. Personal data is data with which you can be personally identified. Data subjects are hereinafter also referred to collectively as “users”. The terms used are not gender-specific.
Status of this data protection declaration: December 1, 2022
Person responsible for data collection on this website:
The data processing on this website is carried out by : Christine Papendieck.
Address: Stauffenbergstr. 33 90473 Nuremberg Germany
Tel: ++49 (172) 30 07 252
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).
Your data is collected when you submit it to us by using, for example, our contact form. Other data is collected automatically as soon as you access the website.
This is mainly the following technical data:
This data is stored in the web server log files for 2 weeks and then automatically deleted by the hoster. We do not merge this data with other data sources and do not evaluate it – thus this data cannot be assigned to specific persons. We reserve the right to check the server log files subsequently, in case of justified suspicion of unlawful activities We collect this data on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website.
This website is hosted by an external service provider (hoster) The use of the hoster is in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f DSGVO). Our hoster will only process your data to the extent necessary to fulfill its service obligations. To ensure data protection-compliant processing, we have concluded an order processing contract with our hoster.
Inventory data (e.g., names, addresses).
Contact data (e.g., e-mail, telephone numbers).
Content data (e.g., text input, photographs, videos).
Usage data (e.g., web pages visited, interest in content, access times).
access times). Meta/communication data (e.g., device information, IP addresses).
Categories of data subjects:
Customers, prospective customers, business partners.
Visitors and users of the online offer.
Purpose of processing:
To provide our online service Answering contact requests and communicating with users Security measures.
Legal basis of data processing
In the following, we share the legal bases of the General Data Protection Regulation (DSGVO), on the basis of which we process personal data. Please note that in addition to the regulations of the DSGVO, national data protection regulations may apply in your or our country of residence and domicile. National data protection regulations in Austria: In addition to the data protection regulations of the General Data Protection Regulation, national data protection regulations apply in Austria. These include, in particular, the Federal Act on the Protection of Individuals with regard to the Processing of Personal Data (Data Protection Act – Datenschutzgesetz – DSG). In particular, the Data Protection Act contains special regulations on the right to information, the right to rectification or erasure, the processing of special categories of personal data, processing for other purposes and transmission, as well as automated decision-making in individual cases. Consent (Art. 6 (1) p. 1 lit. a DSGVO) The data subject has given his or her consent to the processing of personal data relating to him or her for a specific purpose or purposes. Performance of a contract and pre-contractual requests (Art. 6 (1) p. 1 lit. b. DSGVO) The processing is necessary for the performance of a contract to which the data subject is a party or for the performance of pre-contractual measures taken at the data subject’s request. Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO) – Processing is necessary for the purposes of the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data. Data processing in third countries If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, entities or companies, this is only done in accordance with the legal requirements. Subject to explicit consent or contractually or legally required transfer, we process or have the data processed only in third countries with a recognized level of data protection, which include the US processors certified under the “Privacy Shield”, or on the basis of special guarantees, such as contractual obligation by so-called standard protection clauses of the EU Commission, the existence of certifications or binding internal data protection rules (Art. 44 to 49 DSGVO, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de ).
This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as inquiries you send to us via our contact form. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties. We take appropriate technical and organizational measures in accordance with Article 32 of the GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk; these measures include ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access concerning them, input, disclosure, ensuring availability and their separation. Furthermore, we apply procedures that ensure the exercise of data subject rights, deletion of data and response to data compromise. We already take the protection of personal data into account during the development and selection of hardware, software and processes, in accordance with the principle of data protection through technology design and through data protection-friendly default settings.
Cookies are text files that contain data of visited websites or domains and are stored by a browser on the user’s computer. Cookies do not cause any damage to your terminal device, but are primarily used to store information about a user during or after his visit within an online offer. The stored information may include, for example, the language settings on a website, or the login status. The term “cookies” also includes other technologies that perform the same functions as cookies (e.g., user IDs – information about the user stored on the basis of pseudonymous online identifiers):
Chrome: Delete, enable and manage cookies in Chrome.
Safari: Manage cookies and website data with Safari.
Firefox: Delete cookies to remove data that websites have placed on your computer
Internet Explorer: delete and manage cookies
Microsoft Edge: delete and manage cookies
Contact form If you use our contact form, the information you provide in the inquiry form, including the contact data you provide there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent. By entering your data in the contact form, you agree that your data (your name and email address) may be stored by Christine Papendieck, Stauffenbergstr. 33
Germany. This consent can be revoked at any time by sending an e-mail to firstname.lastname@example.org. The processing of the data entered in the contact form is thus based exclusively on your consent (Art. 6 para. 1 lit. a DSGVO). The legality of the data processing operations carried out until the revocation remains unaffected by the revocation. At the same time, when using the contact form , you confirm that you have reached the age of 14. Purpose of data storage: processing your inquiry, making an appointment, sending information material. Duration of data storage: The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage or the purpose for storing the data is no longer given (e.g. after completion of processing your request). Contacting us by e-mail, telephone or fax: If you contact us by e-mail, telephone or fax and provide us with personal data, such as name, e-mail address, address or other personal details, these will only be used by us for the stated purpose, stored securely and not passed on to third parties. Purpose of data storage: processing your inquiry, making an appointment, sending you information material. Duration of data storage: Your data will remain with us until you request us to delete it, revoke your consent to storage or the purpose for storing the data is no longer given (e.g. after processing your inquiry has been completed). Mandatory legal provisions – in particular retention periods – remain unaffected.
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their main residence, your place of work or the place of the alleged violation. The right of appeal is without prejudice to other administrative or judicial remedies.
You have the right to have data that we process on the basis of your consent handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.
Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing and a right to delete this data. For this and also for further questions on the subject of personal data, you can contact us at any time.
If you would like to subscribe to the newsletter offered on the website, we need your e-mail address as well as information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter. Further data is not collected or only on a voluntary basis. We use this data exclusively for sending the requested information.
The processing of the data entered in the newsletter registration form is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.
We use SendinBlue to send newsletters. The provider is SendinBlue SAS, 55 rue d’Amsterdam, 75008 Paris, France. SendinBlue is a service with which the newsletter dispatch can be organized and analyzed. The data you enter for the purpose of receiving newsletters (e.g. e-mail address) is stored on SendinBlue’s servers.
Our newsletters sent with SendinBlue allow us to analyze the behavior of newsletter recipients. Among other things, we can analyze how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. All links in the email are so-called tracking links, with which your clicks can be counted.
If you do not want any analysis by SendinBlue, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. Furthermore, you can also revoke your consent at any time with effect for the future by sending an e-mail to the address given in our imprint.
The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of SendinBlue after you unsubscribe from the newsletter. Data that has been stored by us for other purposes (e.g. e-mail addresses for the member area) remains unaffected by this.
Conclusion of a contract for order processing
We have concluded a contract with SendinBlue in which we oblige SendinBlue to protect the data of our subscribers and not to pass it on to third parties.