data protection declaration
With this data protection declaration, we would like to inform you about the nature, scope and purpose of the processing of personal data (hereinafter also referred to as "data"). Personal Data are all data that have a personal reference to you, e.g. name, address, e-mail address or your user behavior. The data protection declaration applies to all data processing data processing operations carried out by us, both within the scope of our core activities and for the online media provided by us.
Who is responsible for data processing at our company
Responsible for data processing is:
Dipl. Des. Christoph Kulle
Saarbrücker Allee 17
D-66663 Merzig
Telefon: +4968619164054
E-Mail: info@atelier-kulle.com
legal notice
Processing of your data in the context of the services we provide
.We provide services. If you are our customer or business partner or are interested in interested in our services, the nature, scope and purpose of the processing of your data depends on the contractual or pre-contractual services existing between us. This includes conceptual and strategic consulting, software and design development and consulting and maintenance services in this area, planning and implementation of campaigns, IT and server administration and other consulting and training services. In this sense, the data processed by us includes all those data that are required for the purpose of the contractual or pre-contractual services provided by you and which are necessary for the processing of your and which are required to process your inquiry or the contract concluded between us. Unless otherwise stated in the further notes to this data protection declaration, the processing of your data as well as their passing on to third parties is limited to those data, which are necessary to answer your inquiries and/or to fulfill the contract concluded between you and us, to protect our rights and to fulfill legal obligations. We will inform you which data is required for this before or in the course of data collection. Insofar as we use third-party providers to provide our services, the data protection notices of the respective third-party providers apply.
Data concerned:
- Inventory data (e.g. names, addresses)
- Payment data (e.g. bank details, invoices)
- Contact data (e.g. e-mail address, telephone number, postal address)
- Contract data (e.g. subject matter of the contract, duration of the contract)
Affected persons:Customers, interested parties, business and contractual partners
Purpose of processing:Handling contractual services, communication, and responding to contact inquiries, Office and organizational procedures
Legal basis:Contract fulfillment and pre-contractual requests, Art. 6 para. 1 lit. b DSGVO, legal obligation, Art. 6 para. 1 lit. c DSGVO, legitimate interest, Art. 6 para. 1 lit. f DSGVO.
Your rights under the GDPR
According to the GDPR, you have the following rights, which you can exercise at any time by contacting the controller named in section 1. of this privacy policy at any time:
- Right to information:You have the right to request information from us about whether and what data we process from you.
- Right of rectification:You have the right to request the correction of inaccurate or completion of incomplete data.
- Right of deletion:You have the right to request the deletion of your data.
- Right to Restriction:In certain cases, you have the right to request that we process your data only in a restricted manner.
- Right to data portability:You have the right to request that we transfer your data to you or to another responsible person in a structured, common and machine-readable format.
- Beschwerderecht:You have the right to complain to a supervisory authority. The supervisory authority of your usual place of residence, your workplace or our company headquarters is responsible.
Right of withdrawal
You have the right to revoke your consent to data processing at any time.
Right of objection
You have the right to object at any time to the processing of your data, which we base on our legitimate interest according to Art. 6 (1) lit. f DSGVO. If you exercise your right to object, we ask you to explain the reasons. We will then no longer process your personal data unless we can prove to you that compelling reasons worthy of protection in the data processing outweigh your interests and rights.
.Irrespective of the above, you have the right at any time to object to the processing of your your personal data for purposes of advertising and data analysis.
Please address your objection to the contact address of the responsible person indicated above.
When do we delete your data?
We delete your data when we no longer need it or when you instruct us to do so. This means that - unless otherwise stated in the individual data protection notices of this data protection declaration - we delete your data
-
if the purpose of the data processing has ceased to exist and thus the respective legal basis stated in the individual data protection notices
no longer exists, for example.
- after termination of the contractual or membership relations existing between us (Art. 6 para. 1 lit. a DSGVO) or
- after our legitimate interest in the further processing or storage of your data has ceased to exist (Art. 6 para. 1 lit. f DSGVO),
- if you exercise your right of revocation and no other legal basis for the processing within the meaning of Art. 6 (1) lit. b-f DSGVO intervenes,
- if you exercise your right to object and there are no compelling reasons worthy of protection against the deletion.
However, if we have to retain (certain parts of) your data for other purposes, for example because of tax retention periods (usually 6 years for business correspondence or 10 years for accounting records) or the assertion, exercise or defense of legal claims arising from contractual relationships (up to four years) or the data is needed to protect the rights of another natural or legal person, we will delete (the part of) your data only after the expiry of these periods. Until the expiration of these periods, we limit the processing of this data to these purposes (fulfillment of retention obligations).
Webhosting
In order to maintain our Internet pages, we make use of a provider whose server stores our Internet pages are stored and made available for retrieval on the Internet (hosting). In doing so, the provider can process all data transmitted via the browser used by you, which are data transmitted via the browser used by you, which accrue during the use of our Internet pages. This includes in particular your IP address, which the provider needs to deliver our online offer to the browser you use. browser used by you as well as all entries made by you via our website. In addition, the provider used by us can collect
- the date and time of access to our website
- Time zone difference from Greenwich Mean Time (GMT)
- Access status (HTTP status)
- The amount of data transferred
- the Internet service provider of the accessing system
- the type of browser you are using and its version
- the operating system you are using
- the website from which you may have accessed our website
- the pages or sub-pages that you visit on our website.
The aforementioned data is stored as log files on the servers of our provider. This is necessary to ensure the stability and security of the operation of our website.
Data concerned:
- Content data (e.g. posts, photos, videos)
- Nutzungsdaten (bspw. Zugriffszeiten, angeklickte Webseiten)
- Communication data (e.g. information about the device used, IP address)
Affected persons:Users of our website
Purpose of processing:Roll out our Internet pages, ensuring the operation of our Internet pages
Legal basis:Legitimate interest, Art. 6 para. 1 lit. f DSGVO
Web host(s) contracted by us:
UD Media GmbH
Service provider: UD Media GmbH
Website: Kölner Straße 28 D-41812 Erkelenz
Privacy policy:https://udmedia.de/service/datenschutz/
Contact
As far as you contact us via e-mail, social media, telephone, fax, mail, our contact form or in any other way and in doing so provide us with personal personal data such as your name, your telephone number or your e-mail address or provide further information about yourself or your request, we will process this data in order to answer your inquiry within the framework of the existing pre-contractual or contractual relationship between us.
Data concerned:
- Inventory data (e.g. names, addresses)
- Contact data (e.g. e-mail address, telephone number, postal address)
- Content data (texts, photos, videos)
- Contract data (e.g. subject matter of the contract, duration of the contract)
Affected persons:Interested parties, customers, business and contractual partners
Purpose of processing: Communication as well as responding to contact requests, office and organizational procedures.
Legal basis: Contract fulfillment and pre-contractual inquiries, Art. 6 para. 1 lit. b DSGVO, legitimate interest, Art. 6 para. 1 lit. f DSGVO
Payment service provider
In accordance with our legal obligations and our legitimate interests in efficient, secure and customer-oriented payment processing, and customer-oriented payment processing, persons who have concluded a contract or other legal relationship with us may use legal relationship with us may use banks and credit institutions as well as other payment service providers for payment. make use of. The payment service providers offered by us process inventory data in this context, this includes name, address or bank data such as account/credit card number, passwords, TANs, verification numbers and information the contract concluded and details of the recipient of the payment.
The data collected in this context is necessary to enable the payment service provider to process the payment. to be able to carry out the payment. Only the payment service provider commissioned by us collects and processes this personal information. At no time do we receive information about your account or credit card details. We are informed by our payment service provider whether the payment of our customers has been received or not. or not. There is a possibility that our payment service providers may forward our customers' data to information files in order to be able to check the identity and creditworthiness of the payer. In this respect, we refer to the privacy policy and general terms and conditions (GTC) of our payment service providers.
The terms and conditions and privacy policy of the respective payment service provider apply. You will find this information on the website of the service provider concerned or in the transaction application. For further information and for the For further information and for the assertion of your rights regarding revocation and information, we refer you to the provisions of the respective service provider.
Data concerned:
- Inventory data (e.g. name, address),
- Usage data (e.g. websites visited, interest in certain topics, times of access),
- Payment data (e.g. bank details, invoices, payment history),
- Transaction data (e.g. term, customer category, subject of contract),
- Communication and metadata (e.g. IP address, information about the device or computer system)
Purpose of processing:Effective, secure, and customer-oriented payment offers (service) and processing of payments in accordance with contractual agreements
Legal basis:Contract fulfillment and fulfillment of pre-contractual requests, Art. 6 para. 1 lit. b DSGVO, legitimate interests, Art. 6 para. 1 lit. f DSGVO
Revocation options: You can revoke your consent to the use of revoke your consent to the use of personal data at any time vis-à-vis the respective payment service provider. Despite revocation, the payment service provider may still be entitled to, to process, use and transmit the personal data which is absolutely necessary for the contractual are absolutely necessary for the processing of the payment. With regard to the storage and timely deletion of the personal data personal data, please refer to the respective data protection provisions of the payment service provider.
We use the following payment service providers:
PayPal
Service provider: PayPal (Europe) S.à.r.l. et Cie., S.C.A., 22-24 Boulevard Royal, 2449 Luxemburg
Website:https://www.paypal.com/de/webapps/mpp/home
Privacy Policy:https://www.paypal.com/de/webapps/mpp/ua/privacy-full#
Online advertising
We use services to play out Internet advertising. The services we use collect certain user data certain user data by means of a cookie or pixel. This includes in particular the information from which website you have accessed our Internet presence (so-called referrer), which pages of our website you accessed, how long you visited our pages and which interactions you have carried out there. In addition, data on the browser you are using, computer system and the type of device used. In addition, such a service can also be used to collect demographic information, such as age or gender, can be collected as pseudonymous values. If you consent to the If you have consented to the collection of your location data, this may also be processed, depending on the provider. In order to collect and store this data, the respective service places a cookie or a so-called pixel on the end device you use, which also collects the IP address assigned to you. However, this is shortened via a so-called IP masking procedure, so that the IP address can no longer be assigned to your visit to our website. can no longer be assigned to your visit to our website. In principle, when using the respective service, no clear data such as names or e-mail addresses are stored. This is only the case if you are a member of a social network that offers one of the services listed below and merges your profile with the aforementioned aforementioned data material.
The data is analyzed by the service we use in order to generate a report statistical statements about the number of visitors generated by the advertisement and the success of the success of the advertising measure. The reports include, among other things, the total number of users who were redirected to our website via our ads. In addition, the reports contain information on the end devices and browsers of the users, at which locations the users were which locations the users were located, at what times the ad was clicked. However, the reports do not contain any information that could identify you personally as a user of our website. personally identified as a user of our site.
We would like to point out that, depending on the location of the service provider, data collected via the service may be may be transmitted and processed outside the European Union. In this case, there is a risk that the level of data protection required by the GDPR may not be complied with and that it may be difficult and that the enforcement of your rights may not be possible or may be difficult.
Data concerned:
- Usage data (e.g. access times, web pages clicked on)
- Communication data (e.g. information about the device used, IP address)
Affected persons:Users of our online offers
Purpose of processing: Reach measurement, campaign success monitoring, Remarketing as well as interest- and behavior-based marketing
Legal basis: If we have asked for your consent before using the respective service your consent before using the respective service, this is the legal basis, Art. 6 para. 1 lit. a DSGVO. Otherwise, we use the respective service on the basis of our legitimate interest, to direct streams of visitors to our website, to analyze these streams of visitors in order to to analyze these visitor flows in order to continuously improve the functions, offers and user experience to continuously improve the functions, offers and user experience, Art. 6 para. 1 lit. f DSGVO.
We use the following service providers for online advertising:
Google Ads
Service provider: Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Headquarters in Europe: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Irland
Website:https://ads.google.com/home/
Privacy Policy:http://www.google.de/intl/de/policies/privacy
Advertising by e-mail, mail or telephone
We process personal data for our promotional communication by e-mail, post or telephone. personal data. You can object to receiving our advertising measures at any time or or revoke your consent to receive our promotional communications at any time. promotional communication at any time. In order to be able to prove your consent even after your objection or To be able to prove in case of doubt that your consent was given, we can store your data for up to 4 years after your objection/revocation. We will not use your data for any further purposes after your objection/revocation. If you want us to delete your data before then, we will do so after you have confirmed to us that you originally gave us consent.
Data concerned:
- Contact details (e.g. e-mail, telephone number, postal address)
- Inventory data (e.g. names, addresses)
Affected persons:Communication partner
Purpose of processing:Direct promotional activities (marketing) by e-mail, mail or telephone
Legal basis:Consent, Art. 6 para. 1 lit. a DSGVO, legitimate interest, Art. 6 para. 1 lit. f DSGVO
Webanalyse und Statistik
In order to record and statistically evaluate the flow of visitors to our website, we use web analysis services. Such services collect data on, among other things, from which website you have accessed our Internet presence (so-called referrers), which pages of our website you have accessed, how long you have been visiting our pages and which interactions you have carried out there. In addition, data on the browser you are using, computer system and the type of device used. In addition, demographic information can also be collected via such a service, such as age or gender can be collected as pseudonymous values. If you consent to the If you have consented to the collection of your location data, this may also be processed, depending on the provider.
In order to collect and store this data, the web analytics service we use usually sets a cookie on the terminal device you use, which also collects the IP address assigned to you. However IP masking process, so that the IP address can no longer be assigned to your visit to our website. to your visit to our website. In addition, no clear data such as names or e-mail addresses are stored. Neither we nor the service we use know the identity of visitors to our websites.
We would like to point out that, depending on the country of domicile of the service provider named below, the data collected via the service may be transferred and processed outside the area of the European Union. In this case, there is a risk that the level of data protection required by the GDPR will not be complied with and that the enforcement of your rights will be and that the enforcement of your rights may not be possible or may be difficult.
Data concerned:
- Usage data (e.g. access times, web pages clicked on)
- Communication data (e.g. information about the device used, IP address).
Affected persons:Users of our online offers
Purpose of processing: Reach measurement, campaign success monitoring, Remarketing as well as interest- and behavior-based marketing
Legal basis:If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 para. 1 lit. a DSGVO. Otherwise, we use the respective service on the We also use the respective service on the basis of our legitimate interest in analyzing the flow of visitors to our websites in order to continuously improve the functions, offers and user experience, offers and to continuously improve the user experience, Art. 6 para. 1 lit. f DSGVO.
We use the following web analytics services:
Matomo Analytics (ohne Cookies)
Service provider: InnoCraft Ltd. 150 Willis St, 6011 Wellington, Neuseeland
Website:https://matomo.org/
Privacy Policy:https://matomo.org/privacy/
When using Matomo, the data collected via the analysis tool are not transmitted to the service provider, but rather remains on our server. In addition, no cookies are used in the variant we use. Rather, returning users are recognized with the help of a so-called "digital fingerprint". This is stored anonymously and changed every 24 hours. Conclusions about the identity of individual users are not possible.
Our online presence on social networks
Wir betreiben Onlinepräsenzen innerhalb der unten aufgeführten sozialen Netzwerke. Wenn Sie eine dieser Präsenzen besuchen, werden von dem jeweiligen Anbieter die unten aufgeführten Daten erhoben und verarbeitet. erhoben und verarbeitet werden. In der Regel werden diese Daten für Zwecke der Werbung und Marktforschung erhoben Marktforschungszwecken erhoben und es werden Nutzungsprofile erstellt. In den Nutzungsprofilen können Daten gespeichert werden, unabhängig davon, welches Gerät Sie nutzen. Dies ist insbesondere dann der Fall, wenn Sie Mitglied der jeweiligen Plattform sind und dort eingeloggt sind. bei der jeweiligen Plattform angemeldet sind. Die Nutzungsprofile können von den Anbietern genutzt werden, um, um Ihnen interessenbezogene Werbung auszuspielen. Sie haben ein Widerrufsrecht gegenüber den Sie haben ein Recht auf Widerruf. Um dieses Recht auszuüben, müssen Sie sich an den jeweiligen Anbieter wenden.
If you have an account with one of the providers listed below and are logged in there when you visit our website, the respective provider may collect data about your usage behavior on our website. website. To prevent such a linking of your data, you can log out of the provider's service before visiting our website. log out of the provider's service before visiting our site.
For what purpose and to what extent data is collected by the provider, you can refer to the respective, data protection declarations of the providers provided below.
We would like to point out that, depending on the country of domicile of the below provider mentioned below, the data collected via its platform may be transferred and the area of the European Union may be transferred and processed. In this case, there is a risk that the level of data protection required by the GDPR may not be complied with and that the level of data protection prescribed by the GDPR and that the enforcement of your rights may not be possible or may be difficult.
Data concerned:
- Inventory and contact data (e.g. name, address, telephone number, e-mail address)
- Content data (e.g. posts, photos, videos)
- Usage data (e.g. access times, web pages clicked on)
- Communication data (e.g. information about the device used, IP address).
Purpose of processing:Communication and marketing, tracking and analysis of user behavior
Legal basis: Consent, Art. 6 para. 1 lit. a DSGVO, legitimate interests Art. 6 para. 1 lit. f DSGVO
Possibilities of objection: For the respective opt-out options, please refer to the information of the providers linked below.
We maintain online presences on the following social networks:
Service provider: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Headquarters in the EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland
Website:https://www.facebook.com/
Privacy Policy:https://www.facebook.com/about/privacy/
Privacy policy for Facebook pages:https://www.facebook.com/legal/terms/information_about_page_insights_data
Service provider: Instagram Inc., 1601 Willow Road, Menlo Park CA 94025, USA
Head office: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Sitz in der EU: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland
Website:https://www.instagram.com/
Privacy Policy:http://instagram.com/about/legal/privacy
Service provider: LinkedIn Corporation, 1000 W Maude, Sunnyvale, CA 94085, USA
Headquarters in Germany: LinkedIn, Hofstatt 4th Floor, Sendlinger Str. 12, 80331 München
Website:https://www.linkedin.com/?trk=nav_logo
Privacy Policy:https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy
Service provider: Pinterest Inc., 635 High Street, Palo Alto, CA 94301, USA
Headquarters in the EU: Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Irland
Website:https://www.pinterest.de/
Privacy Policy:https://about.pinterest.com/de/privacy-policy
Service provider: WhatsApp Inc. 1601 Willow Road Menlo Park, California 94025, USA
Headquarters in the EU: Whatsapp Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland
Headquarter: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Website:https://www.whatsapp.com/
Privacy Policy:https://www.whatsapp.com/legal/?eea=1#privacy-policy
Service provider: New Work SE, Dammtorstraße 30, 20354 Hamburg
Website:https://www.xing.com/
Privacy Policy:https://privacy.xing.com/de/datenschutzerklaerung
Messenger services
We communicate via messenger services. Messenger services are chat programs that can be used to send text messages, images, or video files in real time over the Internet, but also image or video files can be sent between users in real time. In addition, messenger services can also be used to send emoticons, electronic greeting cards and contacts. In order for messages to be transmitted, participants must be connected to a computer program (called a client) via a network such as the Internet, either directly or via a server. As a rule, messages can also be sent when the other party is not online - the message is then stored by the server of the service The message is then cached by the service's server and later delivered to the recipient when he or she is available again. Finally, these services can also be used for screen transmission and online gaming.
If the service uses end-to-end encryption for the sent content (texts, attachments) only the selected communication partners, but not third parties or the service provider itself, can or the service provider itself can view the message. In this respect, we recommend that you regularly install updates for the service, to ensure the encryption of the content. However, the service provider has the option access the metadata of the communication. This includes the time and (depending on the setting) location of the communication as well as the device you are using.
We would like to point out that, depending on the country of domicile of the below-mentioned provider mentioned below, the data collected via its platform may be transmitted and Union may be transferred and processed. In this case, there is a risk that the level of data protection prescribed by the GDPR will not be complied with and that the enforcement of your rights may not be possible or may only be possible with difficulty.
Data concerned:
- Inventory and contact data (e.g. name, telephone number, e-mail address)
- Content data (e.g. posts, photos, videos)
- Usage data (e.g. access times, web pages clicked on)
- Communication data (e.g. information about the device used, IP address).
Purpose of processing:Communication and marketing
Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 para. 1 lit. a DSGVO. In this respect, we clarify, that we will not transmit your contact data to the service provider for the first time without your consent. Insofar as we communicate with you in the context of a contract initiation or in the context of an existing contractual relationship or in the context of an existing contractual relationship via one of the services listed below, the legal basis is in the fulfillment or preparation of the contract, Art. 6 para. 1 lit. b DSGVO. For the rest we invoke our legitimate interests in fast and efficient communication and fulfillment of the needs of our communication partners in the communication of the following services mentioned below, Art. 6 para. 1 lit. f DSGVO.
Possibilities of objection:The consent given to us for the use of the following You can revoke the consent given to us for the use of the following service at any time. The communication via the Messanger service at any time.
We use the following messenger services:
Facebook Messenger
Service provider: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Headquarters in the EU: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland
Website:https://www.facebook.com
Privacy Policy:https://www.facebook.com/about/privacy
Skype Messenger
Service provider: Skype Communications SARL, 23-29 Rives de Clausen, L-2165 Luxemburg, Luxemburg
Headquarter: EU Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA
Website:https://www.skype.com/de/
Privacy Policy:https://privacy.microsoft.com/de-de/privacystatement
Service provider: WhatsApp Inc. 1601 Willow Road Menlo Park, California 94025, USA
Headquarters in the EU: Whatsapp Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland
Headquarter: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA
Website:https://www.whatsapp.com/
Privacy Policy:https://www.whatsapp.com/legal/?eea=1#privacy-policy
SendinBlue
Service provider: SendinBlue SAS, 55, rue d’Amsterdam, 75008 Paris, France
Website:https://sendinblue.com/
Privacy Policy:https://www.sendinblue.com/legal/privacypolicy/
Security measures
In addition, we take technical and organizational security measures state of the art in order to comply with the provisions of the data protection laws data against accidental or intentional manipulation, partial or complete loss, destruction or against loss, destruction or against unauthorized access by third parties.
Actuality and change of this privacy policy
This privacy policy is currently valid and has the status January 2023.
This privacy policy was created with the help of the data protection generator of SOS Recht. SOS Recht is a service of Mueller.legal Rechtsanwälte Partnerschaft, based in Berlin.