1) Introduction and contact details of the person responsible 1.1 We are pleased that you are visiting our website and thank you for your interest. Below we will inform you about how your personal data is handled when you use our website. Personal data is all data with which you can be personally identified. 1.2 The person responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is Sara Duschl, Hildegard-von-Bingen ANger 14, 80937, Munich, Germany, Tel.: +49 1728227000, Email: sara.duschl@icloud.com. The person responsible for the processing of personal data is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.
We are committed to protecting the privacy of users of our website and/or mobile app and are committed to protecting the information that users provide to us in connection with the use of our website and/or mobile app, digital assets. We are further committed to protecting and using your data in accordance with applicable law. This Privacy Policy explains our practices regarding the collection, use and disclosure of your information through the use of our digital assets when you access the Services through your devices. Please read the Privacy Policy carefully and make sure you fully understand our practices regarding your information before using our Services. If you have read this policy, fully understand it and do not agree with our practices, you must stop using our digital assets and services. By using our Services, you accept the terms of this Privacy Policy. Continued use of the Services constitutes your acceptance of this Privacy Policy and any changes thereto.
In this privacy policy you will learn:
-How we collect data
-What data we collect
-Why we collect this data
-Who we pass on the data to
-Where the data is stored
-How long the data is retained
-How we protect the data
-How we deal with minors Updates or Changes to the Privacy Policy
​
2) What data do we collect? Below is an overview of the data we may collect: De-identified and non-identifiable information that you provide during the registration process or that is collected through the use of our Services: Non-Personal Information. Non-personal data does not allow any conclusions to be drawn as to who collected it. Non-personal information that we collect consists primarily of technical and aggregate usage information. Individually identifiable information, i.e. H. all those through which you can be identified or could be identified with reasonable effort. The personal information we collect through our Services may include information requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses and more. If we combine personal information with non-personal information, we will treat it as personal information as long as it is in combination.
Data collection when you visit our website 2.1 If you use our website for informational purposes only, i.e. if you do not register or otherwise provide us with information, we only collect data that your browser transmits to the site server so-called server log files. When you access our website, we collect the following data, which is technically necessary for us to display the website to you: Our visited website Date and time at the time of access Amount of data sent in bytes Source/reference from which you came to the page Browser used Operating system used IP address used (if necessary: ​​in anonymized form) Processing is carried out in accordance with Article 6 Paragraph 1 Letter f of the GDPR based on our legitimate interest in improving the stability and functionality of our website. The data will not be passed on or used in any other way. However, we reserve the right to subsequently check the server log files if there are concrete indications of illegal use. 2.2 For security reasons and to protect the transmission of personal data and other confidential content (e.g. orders or inquiries to the person responsible), this website uses SSL or TLS encryption. You can recognize an encrypted connection by the string “https://” and the lock symbol in your browser bar.
​
How do we collect data? Below are the main methods we use to collect data: We collect data when you use our services. This means that when you visit our Digital Assets and use Services, we may collect, record and store usage, sessions and related information. We collect data that you provide to us, for example when you contact us directly via a communication channel (e.g. an email with a comment or feedback). We may collect information from third-party sources as described below. We collect information that you provide to us when you log in to our Services through a third party such as Facebook or Google and Instagram.
Why do we collect this data? Category: Always We may use your data for the following purposes: to provide and operate our services; to develop, customize and improve our Services; to respond to your feedback, inquiries and requests and to offer assistance; to analyze demand and usage patterns; for other internal, statistical and research purposes; to improve our data security and fraud prevention capabilities; to investigate violations and enforce our terms and policies and to comply with applicable law, regulation or governmental request; to provide you with updates, news, promotional materials and other information related to our Services. For promotional emails, you can decide for yourself whether you would like to continue to receive them. If not, simply click on the unsubscribe link in these emails.
​
3) Hosting & Content Delivery Network Squarespace To host our website and display the page content, we use the system of the following provider: Squarespace, Le Pole House, Ship Street Great, Dublin 8, Ireland All data collected on our website is processed on the provider’s servers. We have concluded an order processing agreement with the provider, which ensures the protection of our site visitors' data and prohibits unauthorized disclosure to third parties. As part of the aforementioned services, data can also be passed on to third parties as part of further processing on behalf of the customer. The provider then relies on standard contractual clauses from the European Commission, which are intended to ensure compliance with European data protection levels.Who do we share this data with? Category: Always We may share your information with our service providers to operate our services (e.g. storing data through third party hosting services, providing technical support, etc.). We may also disclose your information in the following circumstances: (i) to investigate, detect, prevent, or take action against unlawful activities or other wrongdoing; (ii) to establish or exercise our rights of defense; (iii) to protect our rights, property or personal safety, or the safety of our users or the public; (iv) in the event of a change of control of us or one of our affiliates (by way of a merger, acquisition or purchase of (substantially) all of the assets, among other things); (v) to collect, maintain and/or manage your information through authorized third parties (e.g. cloud service providers) as appropriate for business purposes; (vi) to work with third parties to improve your user experience. To avoid any misunderstandings, we would like to point out that we may transmit, pass on or otherwise use non-personal data to third parties at our own discretion.
​
​
​4) Cookies
Cookies and similar technologies: When you visit or access our Services, we authorize third parties to use web beacons, cookies, pixel tags, scripts and other technologies and analytics services (“Tracking Technologies”). These tracking technologies may allow third parties to automatically collect your data to improve the navigation experience on our digital assets, optimize their performance and ensure a tailored user experience, as well as for security and fraud prevention purposes. To find out more, please read our Cookie Policy. Category: The user is NOT affiliated with an advertising service We will not share your email address or other personal information with advertising companies or advertising networks without your consent.
In order to make visiting our website attractive and to enable the use of certain functions, we use cookies, which are small text files that are stored on your device. Some of these cookies are automatically deleted after you close the browser (so-called “session cookies”), while some of these cookies remain on your device for a longer period of time and enable you to save page settings (so-called “persistent cookies”). In the latter case, you can find out the storage period in the overview of the cookie settings in your web browser. If personal data is also processed through individual cookies we use, the processing takes place in accordance with Art. 6 Para. 1 lit. b GDPR either to implement the contract, in accordance with Art. 6 Para. 1 lit in accordance with Art. 6 Para. 1 lit. f GDPR to protect our legitimate interests in the best possible functionality of the website as well as a customer-friendly and effective design of the page visit. You can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or exclude the acceptance of cookies for certain cases or in general. Please note that if you do not accept cookies, the functionality of our website may be restricted.
​
5) The user is NOT affiliated with an advertising service We will not share your email address or other personal information with advertising companies or advertising networks without your consent.
​
6) The user is connected to an advertising service, a campaign manager or Facebook Ads We may provide advertising across our Services and our digital assets (including websites and applications that use our Services), which may also be tailored to you, such as: B. Ads based on your recent browsing behavior across websites, devices or browsers. To deliver these advertisements to you, we may use cookies and/or JavaScript and/or web beacons (including transparent GIFs) and/or HTML5 local storage and/or other technologies. We may also use third parties, such as: B. Network advertisers (i.e. third parties that display advertisements based on your website visits) to serve targeted advertisements. Third-party advertising network providers, advertisers, sponsors and/or website traffic measurement services may also use cookies and/or JavaScript and/or web beacons (including transparent GIFs) and/or Flash cookies and/or other technologies to improve effectiveness measure your ads and tailor advertising content for you. These third-party cookies and other technologies are subject to the specific privacy policy of the relevant third party and not this one.
Where do we store the data?
7) Always Non-Personal Information Please note that our companies and our trusted partners and service providers are located around the world. For the purposes explained in this Privacy Policy, we store and process any non-personal data that we collect in different jurisdictions.
8) User collects personal data Personal Data Personal data may be maintained, processed and stored in the United States, Ireland, South Korea, Taiwan, Israel and to the extent required for the proper provision of our Services and/or by law (as further explained below) in other jurisdictions.
How long is the data retained?
9) Always Please note that we retain collected information for as long as necessary to provide our services, comply with our legal and contractual obligations to you, resolve disputes, and enforce our agreements. We may correct, supplement or delete inaccurate or incomplete data at any time at our sole discretion. How do we protect the data? Category: Always The hosting service for our digital assets provides us with the online platform through which we can offer our services to you. Your data may be stored through our hosting provider's data storage, databases and general applications. It stores your data on secure servers behind a firewall and it offers secure HTTPS access to most areas of its services.
​
10) User accepts payments/eCom All payment options offered by us and our hosting provider for our digital assets comply with the PCI-DSS (credit card industry data security standard) regulations of the PCI Security Standards Council. This involves collaboration between brands such as Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information (including physical, electronic and procedural measures) by our store and service providers. Category: Always Regardless of the measures and efforts taken by us and our hosting provider, we cannot and do not guarantee absolute protection or security of the data that you upload, post or otherwise share with us or others. For this reason, we ask that you set strong passwords and, if possible, not provide us or others with any confidential information that you believe, if disclosed, could cause you significant or lasting harm. Additionally, because email and instant messaging are not considered secure forms of communication, we ask that you do not share any confidential information through any of these communication channels.
11) Updates or Changes to the Privacy Policy :Always We may revise this Privacy Policy from time to time in our sole discretion, the version posted on the Site will always be current (see “As of” statement). We encourage you to periodically review this Privacy Policy for any changes. If there are any significant changes, we will post a notice on our website. Your continued use of the Services following notification of changes on our website will constitute your acknowledgment and agreement to the changes to the Privacy Policy and your agreement to be bound by the terms and conditions of such changes.
11) Contact: Always If you have general questions about the Services or the information we collect about you and how we use it, please contact us at: Surname: Duschl Address:Hildegard-von-Bingen Anger 14. 80937 München E-mail address: sara.duschl@icloud.com
DISCLAIMER The information contained herein is not a substitute for legal advice and you should not rely solely on it. Specific requirements regarding legal terms and guidelines may vary from state to state and/or from jurisdiction to jurisdiction. As set out in our Terms of Use, you are responsible for ensuring that your Services are permitted by, and comply with, the law applicable to you. To ensure that you fully comply with your legal obligations, we strongly recommend that you seek professional advice to better understand which requirements apply specifically to you. When you contact us (e.g. via contact form or email), personal data is collected. Which data is collected when a contact form is used can be seen in the respective contact form. This data is stored and used exclusively for the purpose of answering your request or for contacting you and the associated technical administration. The legal basis for processing this data is our legitimate interest in answering your request in accordance with Article 6 (1) (f) GDPR. If your contact is aimed at concluding a contract, the additional legal basis for the processing is Article 6 (1) (b) GDPR. Your data will be deleted after your request has been processed. This is the case if it can be seen from the circumstances that the matter in question has been conclusively clarified and if there are no legal retention obligations to the contrary.