Privacy Policy

Responsible in terms of Data Protection Acts, especially the EU General Data Protection Regulation (GDPR), is…

Your data subject rights

You can exercise the following rights by contacting me…

  • Information about your data stored by me and the undergoing processing (Art. 15 GDPR),
  • Correction of false personal data (Art. 16 GDPR),
  • Deletion of your data stored by me (Art. 17 GDPR),
  • Restriction of processing, as long as I must not delete your data due to legal regulations (Art. 18 GDPR),
  • Objection against the processing of your data by me (Art. 21 GDPR) and
  • Data portability, as long as you have consented to the processing or signed a contract with me (Art. 20 GDPR).

The moment you give me your consent you can withdraw it anytime with effect for the future.


Collection of general information on visiting my website

Kind and purpose of processing

When you access my website without registration or sending any additional information, general information will be automatically collected. Those Information (Server-Logfiles) might contain information about your Web-Browser, your Operating System, the domain name of your Internet Provider, your IP-Address and the like. They are especially processed for the following reasons…

  • Guarantee of connection to the Website
  • Guarantee of a smooth experience on the website
  • Evaluation of the systems’ security and stability and
  • for opmizations of the Website.

I do not use your data to draw conclusions about your person. This information might get evaluated anonymized to optimize my presentation and the technology in the background.

Legal basis and legitimate interest

The processing happens according to Art. 6 Abs. 1 lit. f GDPR based on my legitimate interest in optimizing the stability and functionality of my website.

Recipient

Recipient of the data is manitu GmbH, Welvertstr. 2, 66606 St. Wendel as part of a Webhosting-Package, where they are responsible for operating and servicing the website as a processor. A corresponding contract was signed.

Storage duration

The data gets deleted as soon as it is not relevant anymore for the purpose of collection. Data that is needed for serving the website usually gets irrelevant as soon as the session is over.

If saved into Logfiles the data gets deleted at the latest after 14 days. A retention for a longer period is possible. In that case the IP-Address gets anonymized so that there is no relation to the visiting client.

Provision prescribed or required

The provision of named personal data is not legally or contractually required, but without the IP-Address the service and functionality of my website is not guaranteed. Furthermore some services might not be available or restricted. Therefore objection is locked out.


Embedded external plugins

Embedded YouTube-Videos

I am embedding Youtube-Videos on my website. Those plugins are provided by YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA (following „YouTube“). YouTube LLC is a subsidiary of Google. When you visit a website with a Youtube-Plugin, a connection to the servers of Youtube will be established. If you are logged into your YouTube-Account, YouTube can assign your browsing habits to your person. Log out of your account to prevent this. Videos are embedded in extended privacy mode, which means there will be no cookies set until the visitor presses start on the video. When a video gets started the provider uses cookies to analyse users’ behaviour.

There is no opt-out or blockage of transmission of data provided. You can only use the content if you agree to the transmission by starting the video.


SSL-Encryption

To protect your data during transmission I am using state of the art encryption via HTTPS.


Information about your right to object under Art. 21 GDPR

Individual right of objection

You have the right to object against collection and processing of your personal data under Art. 6 Abs. 1 lit. f GDPR (Datenverarbeitung auf der Grundlage einer Interessenabwägung) at any time; that applies to Profiling under Art. 4 Nr. 4 GDPR, too.

If you do I stop every processing of your data unless I have compelling legitimate grounds for processing your data that outweigh your interests, rights and freedom or for law enforcement.

Recipient of objection


Changes to my Privacy Policy

I reserve the right to change this Privacy Policy to make it comply with current legal requirements or to mirror changes in my services. For your next visit the new Privacy Policy will apply.

Questions

If you have any questions do not hesitate to contact me or the next authority.


Social-Media-Presences and connected Data Processing

I operate publicly available profiles on social networks. A list follows later on.

Social media like Facebook, Instagram etc. can analyse your user behavior extensively when you use their websites or Websites with integrated Social Media content. When visiting my social media presences a lot of Processes get started. As far as I know that might be the following…

As long as you are logged in during your visit, the provider can assign that visit to your account. Personal data might still be collected if you are not logged in or do not even have an account. This happen with Cookies for example or your IP-Address.
The providers can create User Profiles with that data where your preferences are saved. That way interest-based advertisement can be shown to you outside of my presence. When using an account it can be shown on every device that is logged into that account.
I cannot retrace all data analysis processes used by the providers. Depending on the provider there might be a lot more or different processes that are used. Further information can be found in the Terms of Use or the Privacy Policy of the respective Platform.

Legal basis and legitimate interest

I want to present myself as comprehensive as possible through my social media presences. This is a legitimate interest under Art. 6 Abs. 1 lit. f GDPR. The processing done by the providers have their own legal basis that has to be named (i.e. Consent under Art. 6 Abs. 1 lit. a GDPR).

Responsible Partners and Law Enforcement

When you visit my presences, I and the provider of the respective platform are responsible for the data processing. You can assert your rights against me or the provider.
In spite of the shared responsibility I do not have unlimited access or say in the provider’s data processing. My possibilities are restritcted, depending on the provider.

Storage duration

Data directly collected by me via the presences will be deleted by me when the purpose of collection gets irrelevant, I am prompted to delete it or you retract your consent to saving and processing your data. Cookies stay on your device until you delete them. Legal regulations like retention periods remain unaffected.
I have no say in the storage duration of your data that gets saved by the providers for their own purposes. Please look into the respective Privacy Policy of the provider (down below).

Presences

I have the following presences on social media…

Further information on data processing can be found in the Privacy Policy of the providers