We have created this privacy statement (version 19.12.2018) to explain to you, in accordance with the requirements of the Basic Data Protection Regulation (EU) 2016/679, what information we collect, how we use data and what choices you have as a visitor to this website.
Unfortunately, it is in the nature of things that these statements sound very technical, but we have tried to make them as simple and clear as possible.
Automatic data storage
When you visit websites today, certain information is automatically generated and stored, including on this website.
When you visit our website as you are doing now, our web server (computer on which this website is stored) automatically stores data such as
- the address (URL) of the called web page
- Browser and browser version
- the operating system
- the address (URL) of the previously visited page (referrer URL)
- the host name and IP address of the device from which it is accessed
- Date and time
in files (web server log files).
Web server log files are usually stored for two weeks and then automatically deleted. We do not pass on this data, but we cannot rule out the possibility that this data may be viewed in the event of unlawful conduct.
According to Article 6 paragraph 1 f DSGVO (lawfulness of processing), the legal basis is that there is a legitimate interest in enabling the error-free operation of this website by recording web server log files.
Storage of personal data
Personal data that you provide to us electronically on this website, such as your name, e-mail address, address or other personal information when submitting a form or comment in the blog, will be used by us together with the time and IP address only for the purpose stated, kept secure and will not be disclosed to third parties.
We therefore only use your personal data for communication with visitors who expressly wish to contact us and for the processing of the services and products offered on this website. We will not disclose your personal information without your consent, but we cannot rule out the possibility that such information may be disclosed in the event of unlawful conduct.
If you send us personal data by e-mail – i.e. outside of this website – we cannot guarantee the secure transmission and protection of your data. We recommend that you never send confidential data unencrypted by e-mail.
According to Article 6 paragraph 1 a DSGVO (lawfulness of processing), the legal basis is that you give us your consent to process the data you have entered. You can revoke this consent at any time – an informal e-mail is sufficient, you will find our contact details in the imprint.
Rights according to the data protection basic regulation
According to the provisions of the DSGVO, they are generally entitled to the following rights:
- Right to Reporting (Article 16 DSGVO)
- Right to cancellation (“right to be forgotten”) (Article 17 DSGVO)
- Right to limitation of processing (Article 18 DSGVO)
- Right of notification – notification obligation in relation to rectification or erasure of personal data or limitation of processing (Article 19 DSGVO)
- Right to data transferability (Article 20 DSGVO)
- Right of objection (Article 21 DSGVO)
- Right not to be subject to a decision based exclusively on automated processing, including profiling (Article 22 DS Block Exemption Regulation)
If you believe that the processing of your data violates data protection law or your data protection claims have otherwise been violated in any way, you can contact the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
TLS encryption with https
We use https to transmit data in a tap-proof manner on the Internet (data protection through technology design Article 25 paragraph 1 DSGVO). Through the use of TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data. You can recognize the use of this data transmission security by the small lock symbol in the upper left corner of the browser and the use of the https scheme (instead of http) as part of our Internet address.
Our website uses HTTP cookies to store user-specific data.
A cookie is a short piece of data that is exchanged between a web browser and a web server, but is completely meaningless to the web server and only takes on a meaning for the web application, e.g. an online shop, such as the content of a virtual shopping basket.
There are two types of cookies: first-party cookies are created by our website and third-party cookies are created by other websites (such as Google Analytics).
Sample cookie data:
- Name: _ga
- Expiry time: 2 years
- Use: Differentiation of website visitors
- Example value: GA1.2.1326744211.152311094147
There are three categories of cookies: cookies that are essential to ensure the basic functionality of the site, functional cookies to ensure the performance of the site, and targeted cookies to improve the user experience.
View Cookie Settings and Delete Cookies
If you want to determine which cookies have been stored in your browser, change cookie settings or delete cookies, you can find this in your browser settings:
- Safari: Managing cookies and website data with Safari
- Firefox: Deleting cookies to remove data that websites have stored on your computer
- Chrome: Delete, activate and manage cookies in Chrome
- Internet Explorer: Deleting and managing cookies
If you do not wish data to be stored in cookies, you can set your browser so that it informs you when cookies are set and you only allow this in individual cases. You can delete or deactivate cookies that are already on your computer at any time. The procedure for this varies from browser to browser, it is best to search for the instructions in Google using the search term “Delete cookies Chrome” or “Deactivate cookies Chrome” in the case of a Chrome browser or exchange the word “Chrome” for the name of your browser, e.g. Edge, Firefox, Safari.
Our concern in the sense of the DSGVO is the improvement of our offer and our web appearance. Since the privacy of our users is important to us, the user data is pseudonymised. Data processing is based on the legal provisions of Art 6 EU-DSGVO para 1 lit a (consent) and/or f (legitimate interest) of the DSGVO.
Google Tag Manager
This website uses the Google Tag Manager. This service allows website tags to be managed through an interface. The Google Tag Manager only implements tags. This means that no cookies are used and no personal data is collected. The Google Tag Manager triggers other tags that may collect data. However, the Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, it remains valid for all tracking tags if they are implemented with the Google Tag Manager.
Edited after using original source: Created with the privacy generator of Content Marketing Agency AdSimple in cooperation with beautyintown.de (www.adsimple.de)