Privacy policy
- Introduction
This website is operated by Judith Batscheider blossom natural interior design. It is very important to us to handle the data of our website visitors with confidence and to protect them in the best possible way. For this reason, we make every effort to comply with the requirements of the GDPR. In the following, we explain how we process your data on our website. We use the clearest and most transparent language possible so that you really understand what happens with your data.
- General information
2.1 Processing of personal data and other terms
Data protection applies to the processing of personal data. Personal data means all data which you can be personally identified. This is, for example, the IP address of the device (PC, laptop, smartphone, etc.) in front of which you are currently sitting. Such data is processed when “something happens to it”. Here, for example, the IP is transmitted from the browser to our provider and stored there automatically. This is then a processing (according to Art. 4, No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).
2.2 Applicable regulations/laws – GDPR, BDSG and TTDSG
The scope of data protection is regulated by laws. In this case, these are the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law. In addition, the TTDSG supplements the provisions from the GDPR as far as the use of cookies is concerned.
2.3 The person in charge
The person responsible for data processing ion the website is the controller within the meaning of the GDPR. This is the natural or legal person who alone or joingtly with others determines the purposes and means of the processing of personal data.
You can reach the responsible person under:
blossom natural interior design
Judith Batscheider
Cmno Masalfasar 11
46135 Mahuella Tauladella Rafalell y Vistabella Valencia
info@followblossom.com
2.4 This is how data is basically processed on this website
As we have already established, there are data (e.g., IP address) that are collected automatically. This data is mainly required for the technical provision of the homepage. If we use personal data or collect other data, we will inform you about it or ask for your consent. Other personal data you share with us consciously. You will find more detailed information below.
2.5 Your Right
The GDPR provides you with comprehensive rights. These include, for example, free information about the origin, recipient and purpose of your stored personal data. You can also request the rectification, blocking or erasure of this data or lodge a complaint with the competent data protection supervisory authority. You can revoke your consent at any time.
You can find out in detail what these rights are and how to exercise them in the last section of this Privacy Policy.
2.6 Data protection – Our view
Data protection is more than just a chore for us. Personal data is of great value and careful handling of this data should be a matter of course in our digitalized world. In addition, you as a website visitor should be able to decide for yourself what “happens” to your data, when and by whom. Therefore, we commit ourselves to comply with all legal requirements, collect only the data necessary for us and treat them confidentially.
2.7 Disclosure and deletion
The transfer and deletion of data are also important and sensitive topics. Therefore, we would like to briefly inform you in advance about our general approach to this.
A transfer of data only takes place on the basis of a legal basis and only if this is unavoidable. This may be the case in particular if it is a so-called Data Processor and a Data Processing Agreement has ben concluded in accordance with Art.28 GDPR.
We delete your data when the purpose and the legal basis for processing cease to exist and the deletion is not contrary to any other legal obligations. A “good” overview of this is also provided by Art. 17 GDPR. For further information, please refer to this Privacy Policy and contact the responsible person if you have any specific questions.
2.8 Hosting
This website is hosted externally. The personal data collected on this website is stored on the hoster’s servers. This includes the automatically collected and stored log files (see below for more details), as well as all other data provided by the website visitors. External hosting is used for the purpose of secure, fast and reliable provision of our website and in this context serves the fulfillment of contracts with our potential and existing customers. The legal basis for the processing is Art. 6 (1) lit. a, b and f GDPR, as well as Section 25 (1) TTDSG, insofar as consent includes the storage of cookies or access to information in the terminal device of the website visitor or user as defined by the TTDSG. Our hoster only processes data that is necessary for the fulfillment of its service obligations and acts as our Data Processor, which means that it is subject to our instructions. We have concluded a corresponding Data Processing Agreement with our hoster. We use the following hoster: CLOUDING.IO, https://cloduing.io/
2.9 Legal basis
The processing of personal data always requires a legal basis. The GDPR provides for the following possibilities in Art. 6 (1) Sentence 1:
The data subject has given his/her consent to the processing of personal data concerning him/her for one or more specific purposes;
- The processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the data subject’s request;
- Processing is necessary for compliance with a legal obligation to which the person in charge subject to;
- The processing is necessary in order to protect the vital interests of the data subject or another natural person;
- Processing is necessary for the performance of the task carried out in the public interest or in the exercise of official authority vested in the person in charge was transferred;
- Processing is necessary for the performance of the task carried out in the public interest or in the exercise of official authority vested in the person in charge was transferred.
- Processing is necessary for the purposes of safeguarding the legitimate interest of the responsible person(s) or of a/an third party necessary, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data override this, in particular where the data subject is a child.
In the following sections, we will provide you with the specific legal basis for the respective processing.
- What happens on our website
By visiting our website, we process personal data about you. To protect this data as best as possible against unauthorized access by third parties, we use SSL or TLS encryption. You can recognize this encrypted connection by the fact that a https:// or a lock symbol is displayed in the address bar of your browser. In the following, you will learn which data is collected when you visit our website, for what purpose this is done and on what legal basis.
3.1 Data collection when calling up the website
By calling up the website, information is automatically stored in so-called server log files. This is the following information:
- Browser type and version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
This data is temporarily required in order to be able to display our website to you permanently and without problems. In particular, this data serves the following purposes:
- System security of the website
- System stability of the website
- Website troubleshooting
- Connecting to the website
- Website presentation
The data processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR and is based on our legitimate interest in the processing of this data, in particular the interest in the functionality of the website as well as its security. If possible, this data is stored pseudonymously and deleted after the respective purpose has been achieved. Insofar, as the server log lies allow the identification of the person concerned, the data is stored for a maximum period of 14 days. An exception exists if a Security-relevant event occurs. In this case, the server log files are stored until the elimination and final clarification of the security-relevant event. For the rest, a consolidation with other data does not take place.
3.2 Cookies
3.2.1 General
This website uses so-called cookies. This is a data record, information that is stored in the browser of your terminal devices and is related to our website. By setting cookies, the navigation fo the webiste in particular can be made easier for the bvisitor. In our Cookie Consent Tool you fill find all relevant information about the cookies we have in use on our website (iff applicable after your consent).
3.2.2 Reject cookies
You can manage all cookies that are not technically necessary directly via our cookie consent tool.
The setting of cookies can be prevented by adjusting the settings of your browser. Here you can find the corresponding links to frequently used browsers:
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-fir efox-loschen?redirectslug=Cookies+1%C3%B6schen&redirectlocale=en Google Chrome: https://support.google.com/chrome/answer/95647?co=GENIE. Platform%3DDesktop&hl=de Microsoft Edge: https://support.microsoft.com/de-de/windows/W0C3%86schen-u nd-verwalten-von-cookies-168dab11-0753-043d-7c16-ede5947fc64d Safari: https://support.apple.com/de-de/guide/mdm/mdmf7d5714d4/web and http s://support.apple.com/de-de/guide/safari/sfri11471/mac
If you use another browser, it is recommended to enter the name of your browser and ‘Delete and manage cookies’ into a search engine and follow the official link to your browser. Alternatively, you can also manage your cookie settings at www.aboutads.info/choices/ or www.youronlinechoices.com. However, we must inform you that a comprehensive blocking/deletion of cookies can lead to impairments in the use of the website.
3.2.3 Technically necessary cookies
We use technically necessary cookies on this website to ensure that our website functions without errors and in accordance with applicable laws. They help to make the website user-friendly. Some functions of our website cannot be displayed without the use of cookies. The legal basis for this is, depending on the individual case, Art. 6 para. 1 lit. b, c and/or f GDPR.
3.2.4 Technically unnecessary cookies
In addition, we also use cookies on our website that are not technically necessary. These cookies are used, among other things, to analyze the surfing behavior of the website visitor or to offer website functions that are, however, not technically necessary. The legal basis for this is your consent pursuant to Art. 6 para. 1 lit. a GDPR. Technically unnecessary cookies are only set with your consent, which you can revoke at any time in the cookie consent tool.
3.3 Data processing through user input
3.3.1 Contact
- E-mail If you contact us by e-mail, we will process your e-mail address and any other data contained in the e-mail. These are stored on the mail server and partly on the respective end devices. Depending on the request, the legal basis for this is regularly Art. 6 para. 1 lit. f GDPR or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose ceases to apply and it is possible according to the legal requirements.
- Phone
If you contact us by phone, the call data may be stored pseudonymously on the respective terminal device and with the telecommunications provider used. Personal data collected during the telephone call will only be processed in order to handle your request. Depending on the request, the legal basis for this is regularly Art. 6 para. 1 lit. f GDPR or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose ceases to apply and it is possible according to the legal requirements.
- Contact form
We offer a contact form. This is used to contact our company. In this form, we usually process your first and last name, your telephone number, your e-mail address, a postal address and the content of the message. The data is stored on our web server and forwarded internally to the relevant e-mail addresses. The legal basis for data processing is Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in responding to your request and in an uncomplicated way of contacting you. If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR. We delete this data no later than 3 months after receipt, unless it is required for a contractual relationship that has arisen.
We bind the contact form of Contact Form 7 WordPress Plugin
Rock Lobster LLC, HCR2+4M Fukuoka, Fukuoka Prefecture, Japan
https://contactform7.com on our website.
3.4 Cookie Consent Tool
3.4.1 Compliance GDPR/CCPA Cookie Consent
3.5 Mailing service
3.5.1 Roundcube Webmail https://roundcube.net/
3.6 Analysis and tracking tools
3.6.1 Google Analytics
We use Google Analytics on this website. Google Analytics is a web analytics service. This service is provided by Google Ireland Limited (“Google”), Gordon House. Barrow Street, Dublin 4, Ireland. Google Analytics uses cookies to recognize the user and thus analyze usage behavior. These cookies are only set with consent. Consent can be revoked at any time and managed in our cookie consent tool. The legal basis for the processing is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG.
The information collected here is usually transferred to a Google server in the USA and stored there. On July 10, 2023, the European Commission adopted an adequacy decision for the USA. Goggle LLC is certified under the EU-US Privacy Framework. However, as the Google servers are located worldwide and data transfer to third countries (e.g. Singapore) cannot be ruled out, the EU Commission’s Standard Contractual Clauses (SCC) apply. The use of Google Analytics results in IP anonymization. The IP address of the respective user is shortened on servers within the member states of the EU (or the European Economic Area) in such a way that it is no longer possible to trace it back to a natural person. In addition, Google undertakes to provide appropriate data protection via the Google Ads data processing conditions and creates an evaluation of website use and website activity and provides the services associated with use. The Google Ads Data Processing Terms apply to companies that are subject to the EU General Data Protection Regulation (GDPR) of the European Economic Area (EEA), the California Consumer Privacy Act (CCPA) or similar regulations. An additional browser plugin can be used to prevent the collected information (s uch as the IP address) from being sent to and used by Google. You can find the plugin and more information about it at https://tools.google.com/dIpage/gaoptou t?hl=de. Otherwise, the storage period depends on the type of data processed. Each customer can choose how long Google Analytics stores data before it is automatically deleted. The maximum lifespan of a Goggle Analytics cookie is two years. You can also find more information about Google’s use of data at https://support. google.com/analytics/answer/6004245?hl=de. For all other queries, you can also contact us directly at support-deutschland@google.com. contact.
3.7 Social media plugins
3.7.1 Instagram
Elements of the social network Instagram are integrated on this website. This service is offered by Meta Platforms Ireland Limited. 4 Grand Canal Square, Grand Canal Harbour, Dublin 2. Ireland. If the social media element is activated, a direct connection is established between the website visitor and the servers of Instagram and his/her IP address is transmitted to Instagram. If the website visitor has a user account, the visit to this website can be assigned to the corresponding user account. We as the website operator do not gain any knowledge about the content of the transmitted data. The legal basis for the processing is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG. The consent can be revoked at any time. If personal data is collected on this website with the help of Facebook or Instagram and forwarded to Meta, the website operator and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Habour. Dublin 2, Ireland are jointly responsible for the data processing pursuant to Article 26 of the GDPR. This joint responsibility is limited exclusively to the collection and transfer of data to Facebook and Instagram. There is an agreement on joint processing for this purpose: https://www.facebook.com/legal/controller_addendum. The website operator is responsible for providing the data protection information when using the Instagram tool and for the secure integration of the tool on the corresponding website in accordance with data protection law. Facebook and Instagram, on the other hand, are responsible for the data security of their products. It follows from this that data subjects’ rights with regard to the data processed by Facebook or Instagram must be asserted directly against Facebook or Instagram. In the case of data transfer to the USA, the standard contractual clauses (SCC) of the EU Commission apply.
https://www.facebook.com/legal/EU_data_transfer_addendum
https://de-de.facebook.com/help/566994660333381
https://www.facebook.com/policy.php
https://instagram.com/about/legal/privacy/.
3.7.2 LinkedIn
Elemts of the social network LinkedIN are integrated on this website. This services is offered by LinkedIn Ireland Unlimited Company, Wilton Plaza Wilton Place, Dublin 2, Ireland.
If the social media element is activated, a direct connection is established between the website visitor and the LinkedIn servers and his/her IP address is transmitted to LinkedIn. If the website visitor has a user account, the visit to this website can be assigned to the corresponding user account. The website visitor has a user account, the visit to this website can be assigned to the corresponding user account. The webiste can be assigned to the corresponding user account. The website operator has no knowledge of the content of the transmitted data.
The legal basis for the processing is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG. The consent can be revoked at any time. In the case of data transfer to the USA, the standart contractual clauses (SCC) of the EU Commission apply.
https://www.linkedin.com/help/linkedin/answer/62538/datenunertragung-aus-der-eu-dem-ewr-und-derschweitz?lang=de. More information: https://www.linkedin.com/legal/privacy-policy
3.7.3 Pinterest
Elements of the social network Pinterest are integrated on this website. This service is offered by Pinterest Europe Ltd, Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.
If the social media element is activated, a direct connection is established between the website visitor and the Pinterest servers in the USA and his/her IP address, browser type and settings, date and time of the request and cookies are transmitted to Pinterest. If the website visitor has a user account, the visit to this website can be assigned to the corresponding user account. The website operator has no knowledge of the content of the transmitted data.
The legal basis for the processing is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG. The consent can be revoked at any time.
More details: https://policy.pinterest.com/de/privacy-policy.
3.8 Social media profiles
In addition to our website, our company is also present on social networks. Here we want to present our company and create the opportunity to get in touch with us. We also use the opportunity to place advertisements and job advertisements on social media.
In the following, we provide information about what data and the respective social network process when you visit and interaction with our profile.
3.8.1 LinkedIn
We operate a LinkedIn profile on https://www.linkedin.com/. This social network is operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 940 43, USA.
- Interaction with our company profile
When you visit our LinkedIn profile and interact with us via it, we process personal data. personal data. On the one hand, the data made publicly available on the profile. On the other hand, we also process the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with the public information.
The legal basis for this processing is Art. 6 para. 1 lit. f GDPR. It is in our legitimate interest to provide relevant and interesting content and to enable the use and functionality of our LinkedIn profile. Insofar as an inquiry is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures, our processing is based on Art. 6 para. 1 lit. b GDPR.
- Page Insights
LinkedIn provides us with aggregated statistics and insights (called Page Insights) that tell us how people interact with our Company Page. Among other things, we receive information about the number of profiles that view, comment on or otherwise interact with our posts, as well as aggregated demographic and other information that helps us learn about the interaction with our LinkedIn profile. Pages Insights provided to us by LinkedIn consist of aggregated data, and LinkedIn does not provide us with any personally identifiable information about members in relation to Page Insights. We also have no way of linking Page Insights to individual members.
When placing ads, LinkedIn provides us with information about the types of people who see our ads and about the success of our ads. Personal data is only passed on to us if this person has consented to such processing. We also receive information from LinkedIn that allows us to understand which of our ads led to a purchase being made or an action being taken.
The purpose of processing this data is to analyze our reach and to adapt our content and advertisements to user interests. By evaluating this data, we can recognize how our content, our profile and our advertising are consumed. This enables us to create target group-specific content and place advertisements in order to better market our company and our services.
The processing is based on our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
When processing personal data in the course of the so-called Page Insight, the processing is carried out in joint responsibility with LinkedIn in accordance with Art. 26 para. 1 GDPR.
We have concluded a corresponding agreement with Linkedln for this purpose, which can be viewed here (https://legal.linkedin.conn/pages-joint-controller-adde ndum).
The contact details of Linkedln are: Linkedln Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. For Linkedln, you can contact the data protection officer at the following link: https://www.linkedin.com/help/linkedin/ask/TSO-DPO.
3.8.2 Processing by Linkedln
In connection with your visit to our company profile, Linkedln may also process additional personal data. In this case, the processing is carried out under the sole responsibility of Linkedln and without our knowledge. You can find more information from Linkedln on this at:
https://de.linkedin.com/legaliprivacy-policy.
3.9 Instagram
We operate an Instagram profile. This social media platform is provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
3.9.1 Interaction with our company profile
When you visit our Facebook profile and interact with us, we process personal data. On the one hand, the data made publicly available on the profile. On the other hand, we also process the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with the public information.
The legal basis for this processing is Art. 6 para. 1 lit. f GDPR. It is in our legitimate interest to provide relevant and interesting content and to enable the use and functionality of our Instagram profile..,
Insofar as an inquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures, our processing is based on Art. 6 para. 1 lit. b GDPR.
3.9.2 Insights
As explained in the Meta Privacy Policy under “How do we use your information?” (https://privacycenter.instagram.com/policynentry_point=ig_help_center_dat a_policy_redirect), Meta also collects and uses information to provide analytics s ervices, known as insights, for site operators. This also applies to our Instagram profile
Insights are summarized statistics that are created based on certain interactions of visitors with pages and the content associated with them and are logged by the meta servers. This includes the following information, among others
- How many people see and interact with our products, services or content, such as posts, videos, Facebook pages, listings, stores and advertisements (if the advertisement is shown on meta-products);
- How people interact with our content, websites, apps and services;
- Which group of people interact with our content and which group of people use our services.
Meta provides us with summarized reports and insights that tell us how well our content, features, products and services are performing.
We do not receive access to personal data, but only to the summarized reports. To evaluate the reach, we can make settings or set appropriate filters with regard to the selection of a time period, the viewing of a specific post and demographic groupings. This data is anonymized. It is not possible for us to draw conclusions about specific individuals.
The purpose of processing this data is to analyze our reach and adapt our content and advertisements to user interests so that visitors can derive the greatest possible benefit from them. By evaluating this data, we can recognize how our content, our profile and our advertising are consumed. This enables us to create target group-specific content and place advertisements in order to better market our company and our services.
The processing is based on our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
When processing personal data in the course of the so-called Insights, the processing is carried out under joint responsibility with Meta in accordance with Art. 26 para. 1 GDPR.
We have concluded a corresponding agreement with Meta, which can be viewed here (https://www.facebook.com/legaliterms/page_controller_addendum.).
Meta’s contact details are as follows:
Online contact: https:/lwww.facebook.com/help/contactll650115808681298
Postal: Meta Platforms Ireland Limited, ATTN: Privacy Operations, Merrion Road, Dublin 4, D04 X2K5, Ireland.
For Facebook, you can contact the data protection officer at the following link: https://www.facebook.com/help/contact/540977946302970.
Further information about the Insights:
For Facebook, you can contact the data protection officer at the following link: https://www.facebook.com/help/pages/insights.
You can find Instagram’s full privacy policy here:
https://privacycenter.instagrann.comipolicy/?entry_point=ig_help_center_data_policy_redirect
3.9.3 Processing of personal data and cookies by Meta
When you access an Instagram page, the IP address assigned to your device is transmitted to Meta. According to Meta, this IP address is anonymized (for “German” IP addresses). Meta also stores information about the end devices of its users (e.g. as part of the “login notification” function); Meta may thus be able
to assign IP addresses to individual users. If you are currently logged in to Instagram as a user, a cookie with your Instagram ID is stored on your device. This enables Meta to track that you have visited this page and how you have used it. Meta buttons integrated into websites enable Meta to record your visits to these websites and assign them to your Instagram profile. This data can be used to tailor content or advertising to you.
Further information:
https://privacycenterinstagram.comipolicy/?entry_point=ig_help_center_data_policy_redirect
3.10 Pinterest
We operate a Pinterest profile. Pinterest is offered by Pinterest Europe Ltd Palmerston House, 2nd Floor Fenian Street Dublin 2 Ireland.
3.10.1 Shared responsibility
We are jointly responsible for our profile with Pinterest. The underlying joint contr oiling agreement can be viewed here: https://business.pinterest.corn/de/pinterest -advertising-services-agreement/rest-of-apaci.
Pinterest’s data protection officer can be contacted here: https://help.pinterest.co mide/data-protection-officer-contact-form.
3.10.2 Data processing by Pinterest
When you visit our Pinterest page, Pinterest collects, among other things, log data that the browser automatically transmits when you visit the website (e.g. IP address, search history, browser type and settings, date and time of the request, etc.). Device information is also processed by Pinterest (e.g. device type, operating system).
Further information can be found at:
https://policy. pinterest.comide/technical-information-we-collect-when-you-use-our-service and https://policy.pinterest.comide/privacy-policy.
Pinterest can also set cookies. Some of the data processed in this way is assigned to the user’s account.
Further information can be found at:
https://policy.pinterest.comide/cookies.
3.10.3 Data processing by us
When Pinterest users communicate with us via our Pinterest profile, we receive
the respective message from the user (including their Pinterest user name). We also process the comments published by users. Our data processing serves the purpose of presenting our published content on Pinterest and communicating with users. The legal basis for this is Art. 6 para. 1 lit.f GDPR, as we have a legitimate interest in presenting relevant information to interested users and communicating about this. The “Pinterest Analytics” function is available to us in our Pinterest profile, which allows us to view statistical evaluations.
The data we receive from Pinterest are merely anonymous statistics about the visitors to our Pinterest profile. These statistics are not personal and do not allow any conclusions to be drawn about individual users.
3.10.4 Passing on the data
When we receive messages from users, we do not transmit the content of these messages to other recipients.
Information about the transmission of data to third parties by Pinterest can be found here:
https://policy.pinterest.comfde/privacy-policy and https://help.pinterest.comideiart
icletads-performance-reporting.
3.10.5 Storage duration
In connection with our Pinterest profile, we only store the messages that we receive when Pinterest users communicate with us via our Pinterest profile. We delete these messages at the latest after the statutory retention period has expired.
The respective storage period by Pinterest is described in their data policy at https://policy.pinterest.comide/privacy-policy.
3.11 Third-party content
3.11.1 Google Fonts
We have integrated Google Fonts locally on our server. Thus, despite the use, no data is transmitted to Google.
3.11.2 Google reCAPTCHA
This website uses Google reCAPTCHA. Google reCAPTCHA is a plugin offered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The Service makes it possible to determine whether a data entry is made by a himan or by an automated program. This analysis begins automatically in the background as soon as the website is entered. For this purpose, various information is collected, which is transmitted to Google. There is no indication of this analysis.
The legal basis for the processing is Art. 7 para. 1 lit. a GDPR and $25 para.1 TTDSG. The consent can be revoked at any time.
More details: https://policies.google.com/privacy?hl=de, https://policies.google.com/terms?hl=de
3.12 Audio and video conferencing
3.12.1 Zoom
We use Zoom for communication with clients. Zoom is an online conferencing Tool. This service is provided by Zoom Communications Inc, San Jose, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA.
When communicating with this tool via video or audio conferencing, personal data is processed by us and the tool provider. The data collected in this process includes all information you provide when using the tool. In addition, metadata regarding the conference is processed. Furthermore, technical information is processed, which is required for the function of the online communication. Furthermore, technical information is processed, which is required for the function of the online communication. Furthermore, all files that are shared within the tool are stored on the servers of the tool provider. Zoom my also set cookies. These cookies are set only with consent. The consent can be revoked at any time. The legal basis for this is Art. 6 para. 1 lit. a GDPR. Otherwise, the legal basis for the processing of data by Zoom is Art.6 (1) lit.b GDPR. The communication is related to the fulfillment of a contract or is necessary for the fulfillment of pre-contractual obligations. Furthermore, this tool is used to facilitate communication with our company. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. This data is stored until the person concerned requests deletion, consent to storage is revoked, or the purpose for storage no longer applies. Cookies remain on the end device until the user deletes them. Mandatory legal provisions regarding retention periods remain unaffected. In the case of data transfer to the US, the standard contractual clauses (SCC) of the EU Commission apply. More information: https://zoom.us/de-de/privacy.html.
- This is also important
Finally, we would like to inform you in detail about your rights and how you will be informed about changes in data protection requirements.
4.1 Your Rights in Detail
4.1.1 Right to information according to Art. 15 GDPR
You can request information about whether your personal data is being processed. If this is the case, you can request further information about the type and manner pf processing. A detailed list can be found in Art. 15 (1) a) to h) GDPR.
4.1.2 Right to rectification according to Art. 16 GDPR
This right includes the correction of inaccurate data and the completion of incomplete personal data.
4.1.3 Right to deletion according to Art. 17 GDPR
This so called “right to be forgotten” gives you the right, under certain conditions, to demand the deletion of personal data by t he controller. This is generally the case if the purpose of the data processing as ceased to exist, if consent has been revoked or uf the initial processing took place without a legal basis. You can find a detailed list of reasons in Art. 17 (1) lit a to f GDPR. Furthermore, this “right to be forgotten” corresponds with the obligation of the controller under Art. 17 (2) GDPR to take appropriate measures to bring about a general erasure of the data.
4.1.4 Right to restriction of processing according to Art. 18 GDPR
This right is subject to the conditions set out in Art. 18 (1) (a) to (d).
4.1.5 Right to data portability according to Art. 20 GDPR
Here, the basic right to receive one’s own data is a common form and to transfer it to another data controller is regulated. However, this only applies to data processed on the basis of consent or a contract pursuant to Art. 20 (1) (a) and (b) and to the extent that this is technically feasible.
4.1.6 Right of objection according to Art 21 GDPR
In principle, you can object to the processing of your personal data. This applies in particular if your interest in objecting outweighs the legitimate interest of the controller in the processing and if the processing relates to direct marketing and/or profiling.
4.1.7 Right to “decision in individual cases” according to Art. 22 GDPR
In principle, you have the right not to be subject to a decision based solely on automated processing (including profiling) which produces legal effects vis-à-vis you or similarly significantly affects you. However, this right is also subject to restrictions and additions in Art. 22(2) and (4) GDPR.
4.1.8 Other rights
The GDPR includes comprehensive rights to inform third parties whether or how you have asserted rights under Art. 16, 17, 18 GDPR. This, however, only insofar as this is also possible or feasible with a reasonable effort. At this point, we would like to inform you once again of your right to withdraw your consent in accordance wih Article 7 (3) of the GDPR. However, this does not affect the lawfulness of the processing carried out up to that point. In addition, we would like to inform you about your rights according to §§ 32 ff. BDSG, which, however, are largely congruent with the rights just described.
4.1.9 Right of appeal according to Art. 77 GDPR.
You also have the right to complain to a data protection supervisory authority if you consider that a processing of a personal data concerning you infringes this regulation.
- What if tomorrow the GDPR is abolished or other changes take place?
The current status of this Privacy Policy is 01.04.2024. From time to time, it is necessary to adapt the content of the Privacy Policy in order to react to actual and legal changes. We therefore reserve the right to amend this Privacy Policy at any time. We will publish the amended version in the same place and recommend that you read the Privacy Policy regularly.