Privacy Policy
Last updated: 29 Aug 2024
​
1. Information about the collection of personal data
(1) In the following we inform you about the collection of personal data when using our website. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses or user behaviour.
(2) Responsible according to Article 4(7) EU General Data Protection Regulation (GDPR) is
Eva Raiser-Johanson
Kidlerstrasse 47
81371 Munich
Germany
(3) If we use commissioned service providers for individual functions of our offer or would like to use your data for advertising purposes, we will inform you in detail below about the respective processes. Unless a more specific storage period has been specified, your personal data will remain with us or our processors until the purpose for data processing no longer applies. If you assert a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. tax or commercial law retention periods); in the latter case, the data will be deleted once these reasons have ceased to exist.
(4) In some cases, we use external service providers to process your data. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly checked.
(5) This website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.
​
2. Your Rights
(1) You have the following rights towards us with regard to your personal data:
(a) Right to access (Article 15 GDPR)
You have the right to access the personal data we have processed relating to you within the scope of Article 15 GDPR at any time. To do this, you can submit an application by post or email to the address given above.
(b) Right to rectification or erasure (Article 16 and 17 GDPR)
You have the right to demand that we rectify your personal data without delay if it is incorrect. To do this, please use the contact addresses given above. In addition, you have the right, under the conditions described in Article 17 GDPR, to request that we erase your personal data. In particular, these requirements provide for a right to erasure if the personal data are no longer necessary for the purposes for which they were collected or otherwise processed, as well as in cases of unlawful processing, the existence of an objection or the existence of an obligation to erasure under Union law or the law of the Member State to which we are subject.
(c) Right to restriction of processing (Article 18 GDPR)
You have the right to demand that we restrict processing in accordance with Article 18 GDPR. This right exists in particular if the accuracy of the personal data is contested by you, for the period enabling us to verify the accuracy, and in the event that you, with an existing right to erasure, requests restricted processing instead of erasure; also in the event that the data is no longer required for the purposes we are pursuing, but you needsit to assert, exercise or defend legal claims and if the successful exercise of an objection between us and you is still disputed. To assert your right to restriction of processing, please use the contact addresses given above.
(d) Right to data portability (Article 20 GDPR)
You have the right to receive from us the personal data that you have provided to us in a structured, commonly used and machine-readable format in accordance with Article 20 GDPR. To exercise your right to data portability, please use the contact addresses provided above.
(e) Right to object to processing (Article 21 GDPR)
You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data relating to you, which is based, among other things, on Article 6(1)(e) or (f) GDPR, pursuant to Article 21 GDPR . We will stop processing your personal data unless we can demonstrate compelling legitimate grounds for processing that override your interests, rights and freedoms, or if the processing serves to establish, exercise or defend legal claims. To do this, please use the contact addresses given above.
(2) You also have the right to complain to a data protection supervisory authority about our processing of your personal data, Art. 77 GDPR. In particular, the data protection supervisory authorities in the Member State of your habitual residence, your place of work or the place of the alleged infringement are responsible for this. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.
The supervisory authority responsible for us is the:
Bayerisches Landesamt für Datenschutzaufsicht (Bavarian State Office for Data Protection Supervision)
Postfach 606
91511 Ansbach
Germany
Phone: +49 (0) 981 53 1300
Fax: +49 (0) 981 53 98 1300
Email: poststelle@lda.bayern.de
You can also complain at: https://www.lda.bayern.de/de/beschwerde.html
(3) If you have given your consent to the processing of your data, you can withdraw this at any time. Such a withdrawal affects the future admissibility of the processing of your personal data after you have given it to us.
​
3. Collection of personal data when visiting our website
(1) Browser-side data collection
If you only use the website for informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you want to view our website, we collect the following data that is technically necessary for us to display our website to you and to ensure stability and security (legal basis is Article 6(1)(f) GDPR):
-
Anonymised IP address
-
Date and time of the request
-
Time zone difference to Greenwich Mean Time (GMT)
-
Content of the request (specific page)
-
Access status (HTTP status code)
-
Amount of data transferred
-
Website from which the request comes (referrer URL)
-
Browsers
-
Operating system and interface
-
Browser language and version
This data is processed by our processors Wix.com Ltd., Nemal St. 40, 6350671 Tel Aviv, Israel, privacy@wix.com and Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin, datenschutz@strato.de.
For more information, see Strato's privacy policy as well as Wix.com's privacy policy.
Wix.com Ltd. is based in Israel, which is considered by the European Commission as a country offering an adequate level of protection for personal data of citizens of EU member states.​
Wix.com Ltd. may share your information with affiliates and third party service providers who process your personal information on behalf of Wix.com Ltd. These companies are based in the United States, Ireland, South Korea, Taiwan, and Israel, but have contractual commitments to protect this information in accordance with industry norms, whether or not their jurisdictions have lesser legal requirements. Please see the Wix.com Ltd Privacy Policy for more information. As a precaution, we would like to point out that in these countries (exception: Ireland) no level of data protection comparable to that of the EU can be guaranteed.
(2) Contact via the contact form
If you contact us using the contact form on this website, your request, including all personal data resulting from it (e.g. name, request, email address) will be stored with us for the purpose of processing your request. This data is sent to our technical service provider Wix.com Ltd. as part of an processing relationship. The contact details and information on data transfer by Wix.com Ltd. in section 3(1) apply accordingly. This data is processed on the basis of Article 6(1)(b) GDPR if your request is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Article 6(1)(f) GDPR) or on your consent (Article 6(1)(a) GDPR) if this was queried.
The data you sent to us via contact requests will remain with us until you request erasure, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.
(3) Contacting us by email, telephone, fax, or Instagram
If you contact us by email, telephone, fax, or Instagram, your inquiry including all resulting personal data (e.g. name, enquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent. This data is processed on the basis of Article 6(1)(b) GDPR if your request is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Article 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) if this was queried.
The data you sent to us via contact requests will remain with us until you request erasure, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.
We would like to point out that data transmission on the Internet (e.g. when communicating by email or Instagram) can have security gaps. A complete protection of the data against access by third parties is not possible.
(4) Cookies
In addition to the aforementioned data, cookies are stored on your device when you visit our website. Cookies are small text files that are stored on your hard drive, assigned to the browser you are using and through which certain information flows to the place that sets the cookie (here from us). Cookies cannot run programs or transmit viruses to your computer. They serve to make the internet offer more user-friendly and effective overall (legal basis is Article 6(1)(f) GDPR).
(5) Use of cookies:
(a) This website uses the following types of cookies, the scope and functionality of which are explained below:
-
Transient cookies (see b)
-
Persistent cookies (see c)
(b) Transient cookies are automatically deleted when you close the browser. These include in particular the session cookies. These store a so-called session ID, with which various requests from your browser can be assigned to the joint session. This allows your computer to be recognized when you return to our website. The session cookies are deleted when you log out or close the browser.
(c) Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
(d) You can configure your browser settings according to your wishes and, for example, refuse to accept third-party cookies or all cookies. We would like to point out that you may not be able to use all the functions of this website.
​
4. Visiting our Instagram profile
(1) When you visit our publicly accessible profiles on the social network ‘Instagram’, your personal data is collected, processed, and stored not only by us but also by the social network ‘Instagram’ operators. This happens even if you do not have a profile on the corresponding social network. The individual data processing operations are not necessarily traceable for us. For details on the collection and storage of your personal data as well as the type, scope and purpose of its processing by the operator of the social network ‘Instagram’ - Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland - please refer to its privacy policy: https://privacycenter.instagram.com/policy.
(2) As the operator of an Instagram page, we can only view the information stored in your public Instagram profile, and only if you have such a profile and are logged into it when you visit our Instagram page. In addition, Meta Platforms Ireland Limited provides us with anonymous usage statistics that we use to improve the user experience when visiting our Instagram page. We do not have access to the usage data that Meta Platforms Ireland Limited collects to compile these statistics. Meta Platforms Ireland Limited has committed to us to assume primary responsibility under the GDPR for the processing of this data, to fulfil all obligations under the GDPR with regard to this data and to make the essentials of this obligation available to those affected. This data processing serves our (and your) legitimate interest in improving the user experience when visiting our Instagram page in line with the target group. The legal basis for the data processing is therefore Article 6(1)(f) GDPR. Meta Platforms Ireland Limited also uses cookies that are stored on your device when you visit our Instagram page, even if you do not have your own Instagram profile or are not logged into it during your visit to our Instagram page. These cookies allow Meta Platforms Ireland Limited to create user profiles based on your preferences and interests and to show you customised advertising (inside and outside Instagram). Cookies remain on your device until you delete them. Details can be found in the Meta Platforms Ireland Limited privacy policy.
​
5. Miscellaneous
There is no automated individual decision-making within the meaning of Article 22 GDPR.
The provision of personal data and other information is not required by law or contract and is not required for the conclusion of a contract.
​​
6. Modification of Terms of Use
We reserve the right to change this privacy policy at any time with effect for the future. A current version is available on the website. Please visit the website regularly and find out about the applicable data protection regulations.
​
​