Privacy Policy

Datenschutz-
erklärung

Projects
Info
Contact

1. Privacy at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data is any data by which you can be personally identified. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.

Data Collection on This Website

Who is responsible for data collection on this website?

Data processing on this website is carried out by the website operator. You can find their contact details in the section “Information on the Responsible Entity” in this privacy policy.

How do we collect your data?

Your data is collected, on the one hand, when you provide it to us. This may, for example, include data that you enter into a contact form.

Other data is collected automatically or with your consent by our IT systems when you visit the website. These are primarily technical data (e.g. internet browser, operating system, or the time of the page access). This data is collected automatically as soon as you enter this website.

What do we use your data for?

Some of the data is collected to ensure the proper functioning of the website. Other data may be used to analyze your user behavior.

What rights do you have regarding your data?

You have the right at any time to request, free of charge, information about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you can revoke this consent at any time for the future. In addition, you have the right, under certain circumstances, to request the restriction of the processing of your personal data. You also have the right to lodge a complaint with the competent supervisory authority.

For this purpose, as well as for any further questions regarding data protection, you can contact us at any time.

Analytics Tools and Third-Party Tools

When you visit this website, your browsing behavior may be statistically evaluated. This is primarily done using so-called analytics programs.

Detailed information about these analytics programs can be found in the following privacy policy.

2. Hosting

We host the content of our website with the following provider:

Strato

The provider is Strato AG. Otto-Ostrowski-Straße 7, 10249 Berlin. When you visit our website, Strato collects various log files, including your IP addresses.

For more information, please refer to Strato’s privacy policy: https://www.strato.de/datenschutz/.

The use of Strato is based on Article 6(1)(f) of the GDPR. We have a legitimate interest in ensuring that our website is displayed as reliably as possible. Where consent has been sought, processing takes place exclusively on the basis of Article 6(1)(a) of the GDPR and Section 25(1) of the TTDSG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent may be withdrawn at any time. Translated with DeepL.com (free version)

Order processing

We have entered into a data processing agreement (DPA) for the use of the aforementioned service. This is a contract required under data protection law, which ensures that the service provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

3. General information and mandatory information

Data protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory data protection regulations and this privacy policy.

When you use this website, various types of personal data are collected. Personal data is information that can be used to identify you personally. This privacy policy explains what data we collect and how we use it. It also explains how and for what purpose this is done.

Please note that data transmission over the internet (e.g. when communicating by email) may be vulnerable to security breaches. It is not possible to guarantee complete protection of data against access by third parties.

Information regarding the data controller

The data controller for this website is:

Nico Rützel
Eschenstraße 9
01097 Dresden
Germany

Email: nico.ruetzel[at]outlook.de

The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of the processing of personal data (e.g. names, email addresses, etc.).

Retention period

Unless a more specific retention period is stated in this privacy policy, we will retain your personal data until the purpose for which it is processed no longer applies. If you submit a valid request for erasure or withdraw your consent to data processing, your data will be erased unless we have other legally permissible grounds for storing your personal data (e.g. retention periods under tax or commercial law); in the latter case, erasure will take place once these grounds no longer apply.

General information on the legal basis for data processing on this website

Where you have consented to the processing of your data, we process your personal data on the basis of Article 6(1)(a) of the GDPR or Article 9(2)(a) of the GDPR, where special categories of data as defined in Article 9(1) of the GDPR are processed. In the event of explicit consent to the transfer of personal data to third countries, data processing is also carried out on the basis of Article 49(1)(a) of the GDPR. Where you have consented to the storage of cookies or to access to information on your device (e.g. via device fingerprinting), data processing is additionally carried out on the basis of Section 25(1) of the German Telemedia Act (TTDSG). Consent may be withdrawn at any time. If your data is required for the performance of a contract or for the implementation of pre-contractual measures, we process your data on the basis of Article 6(1)(b) of the GDPR. Furthermore, we process your data where this is necessary to comply with a legal obligation on the basis of Article 6(1)(c) of the GDPR. Data processing may also take place on the basis of our legitimate interest pursuant to Article 6(1)(f) of the GDPR. The relevant legal bases in each individual case are set out in the following paragraphs of this privacy policy.

Recipients of personal data

As part of our business operations, we work with various external parties. In some cases, this requires us to transfer personal data to these external parties. We only disclose personal data to external parties where this is necessary for the performance of a contract, where we are legally obliged to do so (e.g. disclosure of data to tax authorities), where we have a legitimate interest in the disclosure pursuant to Article 6(1)(f) of the GDPR, or where another legal basis permits the disclosure of data. When using data processors, we only pass on our customers’ personal data on the basis of a valid data processing agreement. In the case of joint processing, a joint processing agreement is concluded.

Withdrawal of your consent to data processing

Many data processing operations are only possible with your explicit consent. You may withdraw any consent you have already given at any time. The lawfulness of the data processing carried out prior to the withdrawal remains unaffected by the withdrawal.

Right to object to data collection in specific cases and to direct marketing (Article 21 of the GDPR)

Where data processing is carried out on the basis of Article 6(1)(e) or (f) of the GDPR, you have the right at any time to object to the processing of your personal data on grounds relating to your particular situation; this also applies to profiling based on these provisions. The specific legal basis on which processing is based can be found in this privacy policy. If you object, we will no longer process your personal data in question, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to establish, exercise or defend legal claims (objection under Article 21(1) of the GDPR).

If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for such marketing purposes; this also applies to profiling insofar as it is related to such direct marketing. If you object, your personal data will no longer be used for the purposes of direct marketing (objection under Article 21(2) of the GDPR).

Right to lodge a complaint with the relevant supervisory authority

In the event of infringements of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place where the alleged infringement occurred. This right to lodge a complaint is without prejudice to any other administrative or judicial remedies.

Right to data portability

You have the right to receive data that we process automatically on the basis of your consent or in fulfilment of a contract, either for yourself or for a third party, in a commonly used, machine-readable format. If you request the direct transfer of the data to another controller, this will only take place to the extent that it is technically feasible.

Access, rectification and erasure

In accordance with the applicable legal provisions, you have the right at any time to obtain, free of charge, information about your stored personal data, its source and recipients, and the purpose of the data processing, and, where applicable, the right to have this data corrected or erased. You may contact us at any time regarding this matter or any other questions you may have about personal data.

Right to restriction of processing

You have the right to request that the processing of your personal data be restricted. You may contact us at any time to do so. The right to restriction of processing applies in the following cases:

  • If you dispute the accuracy of your personal data held by us, we will generally need time to verify this. For the duration of this verification, you have the right to request that the processing of your personal data be restricted.
  • If your personal data has been or is being processed unlawfully, you may request that the processing of your data be restricted instead of it being erased.
  • If we no longer require your personal data, but you need it to exercise, defend or assert legal claims, you have the right to request that the processing of your personal data be restricted rather than deleted.
  • If you have lodged an objection under Article 21(1) of the GDPR, a balancing of interests between yours and ours must be carried out. Until it has been determined whose interests prevail, you have the right to request that the processing of your personal data be restricted.

If you have restricted the processing of your personal data, such data may – apart from storage – only be processed with your consent, or for the purpose of establishing, exercising or defending legal claims, or for the protection of the rights of another natural or legal person, or for reasons of an important public interest of the European Union or a Member State.

SSL or TLS encryption

This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential information, such as orders or enquiries that you send to us as the website operator. You can recognise an encrypted connection by the fact that the address bar of your browser changes from “http://” to “https://” and by the padlock symbol in your browser bar.

If SSL or TLS encryption is enabled, the data you send to us cannot be intercepted by third parties.

Objection to promotional emails

We hereby object to the use of contact details published in accordance with the legal requirement to provide an imprint for the purpose of sending unsolicited advertising and information materials. The operators of this website expressly reserve the right to take legal action in the event of unsolicited advertising being sent, for example via spam emails.

4. Data collection on this website

Contact form

If you send us enquiries via the contact form, we will store the information you provide in the form, including your contact details, for the purpose of processing your enquiry and in case we need to follow up with further questions. We will not pass on this information without your consent.

The processing of this data is based on Article 6(1)(b) of the GDPR, provided that your enquiry relates to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of enquiries addressed to us (Article 6(1)(f) of the GDPR) or on your consent (Article 6(1)(a) of the GDPR) where this has been requested; consent may be withdrawn at any time.

The data you enter in the contact form will be retained by us until you request its deletion, withdraw your consent to its storage, or the purpose for storing the data no longer applies (e.g. once your enquiry has been processed). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.

Enquiries by email, telephone or fax

If you contact us by email, telephone or fax, your enquiry, including all personal data contained therein (name, enquiry), will be stored and processed by us for the purpose of dealing with your request. We will not pass on this data without your consent.

The processing of this data is based on Article 6(1)(b) of the GDPR, provided that your enquiry relates to the performance of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of enquiries addressed to us (Article 6(1)(f) of the GDPR) or on your consent (Article 6(1)(a) of the GDPR) where this has been requested; consent may be withdrawn at any time.

The data you send us via contact enquiries will be retained by us until you request its deletion, withdraw your consent to its storage, or the purpose for storing the data no longer applies (e.g. once your enquiry has been dealt with). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.

5. Plugins and tools

YouTube with enhanced privacy settings

This website embeds videos from YouTube. The website is operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

When you visit one of these websites that embeds YouTube, a connection is established with YouTube’s servers. This informs the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you allow YouTube to link your browsing behaviour directly to your personal profile. You can prevent this by logging out of your YouTube account.

We use YouTube in enhanced privacy mode. According to YouTube, videos played in enhanced privacy mode are not used to personalise the user’s browsing experience on YouTube. Advertisements displayed in enhanced privacy mode are also not personalised. No cookies are set in enhanced privacy mode. Instead, however, so-called local storage elements are stored in the user’s browser; these contain personal data in a similar way to cookies and can be used for recognition purposes. You can find details on enhanced privacy mode here: https://support.google.com/youtube/answer/171780.

In some cases, once a YouTube video has been played, further data processing operations may be triggered over which we have no control.

We use YouTube to ensure our online content is presented in an engaging manner. This constitutes a legitimate interest within the meaning of Article 6(1)(f) of the GDPR. Where consent has been sought, processing takes place exclusively on the basis of Article 6(1)(a) of the GDPR and Section 25(1) of the TTDSG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent may be withdrawn at any time.

For further information on data protection on YouTube, please see their privacy policy at: https://policies.google.com/privacy?hl=de.

The company is certified under the EU-US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards when data is processed in the United States. Every company certified under the DPF undertakes to comply with these data protection standards. Further information on this is available from the provider via the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active

SoundCloud

This website may incorporate plugins from the social network SoundCloud (SoundCloud Limited, Berners House, 47–48 Berners Street, London W1T 3NF, United Kingdom). You can recognise the SoundCloud plugins by the SoundCloud logo on the relevant pages.

When you visit this website, a direct connection is established between your browser and the SoundCloud server once the plugin is activated. This informs SoundCloud that you have visited this website using your IP address. If you click the ‘Like’ or ‘Share’ button whilst logged into your SoundCloud account, you can link the content of this website to your SoundCloud profile and/or share it. This allows SoundCloud to associate your visit to this website with your account. Please note that, as the provider of these pages, we have no knowledge of the content of the data transmitted or how it is used by SoundCloud.

The storage and analysis of data is carried out on the basis of Article 6(1)(f) of the GDPR. The website operator has a legitimate interest in achieving the widest possible visibility on social media. Where consent has been sought, processing takes place exclusively on the basis of Article 6(1)(a) of the GDPR and Section 25(1) of the TTDSG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent may be withdrawn at any time.

The United Kingdom is considered a safe third country in terms of data protection. This means that the United Kingdom has a level of data protection equivalent to that in the European Union.

Further information on this can be found in SoundCloud’s privacy policy at: https://soundcloud.com/pages/privacy.

If you do not want SoundCloud to associate your visit to this website with your SoundCloud account, please log out of your SoundCloud account before activating the SoundCloud plugin.

Source: https://www.e-recht24.de