Privacy policy

General

With this data protection declaration, we would like to inform you about the types of your personal data (hereinafter referred to collectively as “data”) that we process, for what purposes and to what extent, and how we use this data. We treat your personal data confidentially and in accordance with the statutory data protection regulations. Personal data is data with which you can be personally identified. Data subjects are hereinafter also referred to collectively as “users”. The terms used are not gender-specific.

Status of this data protection declaration: October 1, 2023

Person responsible for data collection on this website:

The data processing on this website is carried out by : Christine Papendieck.
Address: Weißer Weg 11 – 90491 Nürnberg – Germany

E-mail: info@navuna.com
Tel: ++49 (172) 30 07 252

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses, etc.).

Data collection on this website

Your data is collected when you submit it to us by using, for example, our contact form. Other data is collected automatically as soon as you access the website.
This is mainly the following technical data:

  • Address of the accessed web page (URL)
  • Browser and version of the browser of the user
  • the operating system of the user
  • the address of the previously visited page (referrer URL)
  • host name and IP address of the device from which this website is accessed
  • date and time of the access  

This data is stored in the web server log files for 2 weeks and then automatically deleted by the hoster. We do not merge this data with other data sources and do not evaluate it – thus this data cannot be assigned to specific persons. We reserve the right to check the server log files subsequently, in case of justified suspicion of unlawful activities We collect this data on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website.

Hosting

This website is hosted by an external service provider (hoster) The use of the hoster is in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f DSGVO). Our hoster will only process your data to the extent necessary to fulfill its service obligations. To ensure data protection-compliant processing, we have concluded an order processing contract with our hoster.

Types of data processed:

Inventory data (e.g., names, addresses).
Contact data (e.g., e-mail, telephone numbers).
Content data (e.g., text input, photographs, videos).
Usage data (e.g., web pages visited, interest in content, access times).
access times). Meta/communication data (e.g., device information, IP addresses).

Categories of data subjects:
Customers, prospective customers, business partners.
Visitors and users of the online offer.

Purpose of processing:

To provide our online service Answering contact requests and communicating with users Security measures.

Legal basis of data processing

In the following, we share the legal bases of the General Data Protection Regulation (DSGVO), on the basis of which we process personal data. Please note that in addition to the regulations of the DSGVO, national data protection regulations may apply in your or our country of residence and domicile. National data protection regulations in Austria: In addition to the data protection regulations of the General Data Protection Regulation, national data protection regulations apply in Austria. These include, in particular, the Federal Act on the Protection of Individuals with regard to the Processing of Personal Data (Data Protection Act – Datenschutzgesetz – DSG). In particular, the Data Protection Act contains special regulations on the right to information, the right to rectification or erasure, the processing of special categories of personal data, processing for other purposes and transmission, as well as automated decision-making in individual cases. Consent (Art. 6 (1) p. 1 lit. a DSGVO) The data subject has given his or her consent to the processing of personal data relating to him or her for a specific purpose or purposes. Performance of a contract and pre-contractual requests (Art. 6 (1) p. 1 lit. b. DSGVO) The processing is necessary for the performance of a contract to which the data subject is a party or for the performance of pre-contractual measures taken at the data subject’s request. Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO) – Processing is necessary for the purposes of the legitimate interests of the controller or a third party, unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data. Data processing in third countries If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, entities or companies, this is only done in accordance with the legal requirements. Subject to explicit consent or contractually or legally required transfer, we process or have the data processed only in third countries with a recognized level of data protection, which include the US processors certified under the “Privacy Shield”, or on the basis of special guarantees, such as contractual obligation by so-called standard protection clauses of the EU Commission, the existence of certifications or binding internal data protection rules (Art. 44 to 49 DSGVO, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de ).

Security measures / SSL encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as inquiries you send to us via our contact form. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties. We take appropriate technical and organizational measures in accordance with Article 32 of the GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk; these measures include ensuring the confidentiality, integrity and availability of data by controlling physical access to the data, as well as access concerning them, input, disclosure, ensuring availability and their separation. Furthermore, we apply procedures that ensure the exercise of data subject rights, deletion of data and response to data compromise. We already take the protection of personal data into account during the development and selection of hardware, software and processes, in accordance with the principle of data protection through technology design and through data protection-friendly default settings.

Use of cookies

Cookies are text files that contain data of visited websites or domains and are stored by a browser on the user’s computer. Cookies do not cause any damage to your terminal device, but are primarily used to store information about a user during or after his visit within an online offer. The stored information may include, for example, the language settings on a website, or the login status. The term “cookies” also includes other technologies that perform the same functions as cookies (e.g., user IDs – information about the user stored on the basis of pseudonymous online identifiers):

  • Temporary cookies, also known as session cookies: Temporary cookies are deleted at the latest after a user has left an online offer and closed his browser.
  • Permanent cookies: Permanent cookies remain stored on your terminal device until you delete them yourself or an automatic solution is provided by your web browser. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again.
  • First-party cookies: First-party cookies are set by us.
  • Third-party cookies, also referred to as third-party cookies: Third-party cookies are mainly used by advertisers (so-called third parties) to process user information.
  • Necessary, also referred to as essential or absolutely necessary cookies: Cookies can be absolutely necessary for the operation of a website, e.g. to save logins or other user entries, or for security reasons.
  • Statistics, marketing and personalization cookies: Furthermore, cookies are generally also used in the context of range measurement and when a user’s interests or behavior (e.g. viewing certain content, using functions, etc.) on individual websites are stored in a user profile. Such profiles are used, for example, to show users content that matches their potential interests. This procedure is also referred to as “tracking”, i.e., tracking the potential interests of users. These types of cookies are not set on our website
  • We do not use Google Analytics, Facebook Pixel

Which and whether you want to use cookies, you can determine yourself. You have the option to delete, disable or only partially allow cookies. For example, you can block only third-party cookies, but allow all other cookies. You can also set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. If you want to determine which cookies have been stored in your browser, if you want to change or delete cookie settings, you can find this in your browser settings:

Chrome: Delete, enable and manage cookies in Chrome.
Safari:
Manage cookies and website data with Safari.
Firefox:
Delete cookies to remove data that websites have placed on your computer
Internet Explorer:
delete and manage cookies
Microsoft Edge:
delete and manage cookies

Use of personal data in the course of a contact:

Contact form If you use our contact form, the information you provide in the inquiry form, including the contact data you provide there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We do not pass on this data without your consent. By entering your data in the contact form, you agree that your data (your name and email address) may be stored by Christine Papendieck, Stauffenbergstr. 33
90473 Nuremberg
Germany. This consent can be revoked at any time by sending an e-mail to info@navuna.com. The processing of the data entered in the contact form is thus based exclusively on your consent (Art. 6 para. 1 lit. a DSGVO). The legality of the data processing operations carried out until the revocation remains unaffected by the revocation. At the same time, when using the contact form , you confirm that you have reached the age of 14. Purpose of data storage: processing your inquiry, making an appointment, sending information material. Duration of data storage: The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage or the purpose for storing the data is no longer given (e.g. after completion of processing your request). Contacting us by e-mail, telephone or fax: If you contact us by e-mail, telephone or fax and provide us with personal data, such as name, e-mail address, address or other personal details, these will only be used by us for the stated purpose, stored securely and not passed on to third parties. Purpose of data storage: processing your inquiry, making an appointment, sending you information material. Duration of data storage: Your data will remain with us until you request us to delete it, revoke your consent to storage or the purpose for storing the data is no longer given (e.g. after processing your inquiry has been completed). Mandatory legal provisions – in particular retention periods – remain unaffected.

Your rights as a data subject
Right of appeal to the competent supervisory authority

In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their main residence, your place of work or the place of the alleged violation. The right of appeal is without prejudice to other administrative or judicial remedies.

Right to data portability

You have the right to have data that we process on the basis of your consent handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

Information, deletion and correction

Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing and a right to delete this data. For this and also for further questions on the subject of personal data, you can contact us at any time.

Newsletter

If you would like to subscribe to the newsletter offered on the website, we need your e-mail address as well as information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter. Further data is not collected or only on a voluntary basis. We use this data exclusively for sending the requested information.

The processing of the data entered in the newsletter registration form is based on your consent (Art. 6 para. 1 lit. a DSGVO). You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

We use SendinBlue to send newsletters. The provider is SendinBlue SAS, 55 rue d’Amsterdam, 75008 Paris, France. SendinBlue is a service with which the newsletter dispatch can be organized and analyzed. The data you enter for the purpose of receiving newsletters (e.g. e-mail address) is stored on SendinBlue’s servers.

Our newsletters sent with SendinBlue allow us to analyze the behavior of newsletter recipients. Among other things, we can analyze how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. All links in the email are so-called tracking links, with which your clicks can be counted.

If you do not want any analysis by SendinBlue, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. Furthermore, you can also revoke your consent at any time with effect for the future by sending an e-mail to the address given in our imprint.

The data you provide for the purpose of receiving the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of SendinBlue after you unsubscribe from the newsletter. Data that has been stored by us for other purposes (e.g. e-mail addresses for the member area) remains unaffected by this.

For more details, please refer to the privacy policy of SendinBlue at: https://de.sendinblue.com/legal/privacypolicy/.

Conclusion of a contract for order processing

We have concluded a contract with SendinBlue in which we oblige SendinBlue to protect the data of our subscribers and not to pass it on to third parties.

Google Translate
We use the Google Translate translation service on our website to make the website available in other languages. The provider is Google Inc, 1600 Amphitheater Parkway, Mountain View, CA 94043 – USA To use the Google Translate functions, it is necessary to save your IP address. The IP address and the URL of the page you are visiting are transmitted to a Google server in the USA and stored there. As the operator of the site, we have no influence on this data transmission. We use Google Translate in the interest of easy accessibility and barrier-free access to our online offer for international visitors. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR. You can find more information on the handling of user data in Google’s data protection declaration:https://www.google.de/intl/de/policies/privacy/.