Responsible in terms of Data Protection Acts, especially the EU General Data Protection Regulation (GDPR), is…
Your data subject rights
You can exercise the following rights by contacting me…
- Information about your data stored by me and the undergoing processing (Art. 15 GDPR),
- Correction of false personal data (Art. 16 GDPR),
- Deletion of your data stored by me (Art. 17 GDPR),
- Restriction of processing, as long as I must not delete your data due to legal regulations (Art. 18 GDPR),
- Objection against the processing of your data by me (Art. 21 GDPR) and
- Data portability, as long as you have consented to the processing or signed a contract with me (Art. 20 GDPR).
The moment you give me your consent you can withdraw it anytime with effect for the future.
You can file a complaint at a supervisory authority at any time. A list of authorities for private affairs with address can be found here https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html.
Collection of general information on visiting my website
Kind and purpose of processing
When you access my website without registration or sending any additional information, general information will be automatically collected. Those Information (Server-Logfiles) might contain information about your Web-Browser, your Operating System, the domain name of your Internet Provider, your IP-Address and the like. They are especially processed for the following reasons…
- Guarantee of connection to the Website
- Guarantee of a smooth experience on the website
- Evaluation of the systems’ security and stability and
- for opmizations of the Website.
I do not use your data to draw conclusions about your person. This information might get evaluated anonymized to optimize my presentation and the technology in the background.
Legal basis and legitimate interest
The processing happens according to Art. 6 Abs. 1 lit. f GDPR based on my legitimate interest in optimizing the stability and functionality of my website.
Recipient of the data is manitu GmbH, Welvertstr. 2, 66606 St. Wendel as part of a Webhosting-Package, where they are responsible for operating and servicing the website as a processor. A corresponding contract was signed.
The data gets deleted as soon as it is not relevant anymore for the purpose of collection. Data that is needed for serving the website usually gets irrelevant as soon as the session is over.
If saved into Logfiles the data gets deleted at the latest after 14 days. A retention for a longer period is possible. In that case the IP-Address gets anonymized so that there is no relation to the visiting client.
Provision prescribed or required
The provision of named personal data is not legally or contractually required, but without the IP-Address the service and functionality of my website is not guaranteed. Furthermore some services might not be available or restricted. Therefore objection is locked out.
Embedded external plugins
There is no opt-out or blockage of transmission of data provided. You can only use the content if you agree to the transmission by starting the video.
To protect your data during transmission I am using state of the art encryption via HTTPS.
Information about your right to object under Art. 21 GDPR
Individual right of objection
You have the right to object against collection and processing of your personal data under Art. 6 Abs. 1 lit. f GDPR (Datenverarbeitung auf der Grundlage einer Interessenabwägung) at any time; that applies to Profiling under Art. 4 Nr. 4 GDPR, too.
If you do I stop every processing of your data unless I have compelling legitimate grounds for processing your data that outweigh your interests, rights and freedom or for law enforcement.
Recipient of objection
If you have any questions do not hesitate to contact me or the next authority.
Social-Media-Presences and connected Data Processing
I operate publicly available profiles on social networks. A list follows later on.
Social media like Facebook, Instagram etc. can analyse your user behavior extensively when you use their websites or Websites with integrated Social Media content. When visiting my social media presences a lot of Processes get started. As far as I know that might be the following…
As long as you are logged in during your visit, the provider can assign that visit to your account. Personal data might still be collected if you are not logged in or do not even have an account. This happen with Cookies for example or your IP-Address.
The providers can create User Profiles with that data where your preferences are saved. That way interest-based advertisement can be shown to you outside of my presence. When using an account it can be shown on every device that is logged into that account.
Legal basis and legitimate interest
I want to present myself as comprehensive as possible through my social media presences. This is a legitimate interest under Art. 6 Abs. 1 lit. f GDPR. The processing done by the providers have their own legal basis that has to be named (i.e. Consent under Art. 6 Abs. 1 lit. a GDPR).
Responsible Partners and Law Enforcement
When you visit my presences, I and the provider of the respective platform are responsible for the data processing. You can assert your rights against me or the provider.
In spite of the shared responsibility I do not have unlimited access or say in the provider’s data processing. My possibilities are restritcted, depending on the provider.
Data directly collected by me via the presences will be deleted by me when the purpose of collection gets irrelevant, I am prompted to delete it or you retract your consent to saving and processing your data. Cookies stay on your device until you delete them. Legal regulations like retention periods remain unaffected.
I have the following presences on social media…
- Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA): https://help.instagram.com/519522125107875.
- Facebook (Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Irland): https://www.facebook.com/about/privacy/.
- YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland): https://policies.google.com/privacy
- SoundCloud (SoundCloud Global Limited & Co. KG, Rheinsberger Str. 76/77, 10115 Berlin): https://soundcloud.com/pages/privacy.