Information pursuant to Sect. 5 German Telemedia Act (TMG)
Annemarie Strehl
Fritz-Ritter-Str.10
07747 Jena
Contact
Phone: +491607941061
E-mail: hi@annemariestrehl.com
VAT ID
Sales tax identification number according to Sect. 27 a of the Sales Tax Law:
DE 301 552 402
Responsible for the content according to Sect. 55, paragraph 2 RStV
Annemarie Strehl
Fritz-Ritter-Str.10, 07747 Jena, Germany
Data protection
General Information
The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is all data with which you can be personally identified. Detailed information on the subject of data protection can be found in our data protection declaration listed under this text.
Data collection on this website
Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find their contact details in the section “Notice on the responsible body” in this data protection declaration.
How do we collect your data?
On the one hand, your data is collected when you communicate it to us. This can be z. B. be data that you enter in a contact form.
Other data is collected automatically or with your consent by our IT systems when you visit the website. This is primarily technical data (e.g. internet browser, operating system or time of the page view). This data is collected automatically as soon as you enter this website.
What do we use your data for?
Part of the data is collected to ensure that the website is provided without errors. Other data can be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right, under certain circumstances, to request that the processing of your personal data be restricted. You also have the right to lodge a complaint with the competent supervisory authority.
You can contact us at any time if you have any further questions on the subject of data protection.
Analysis tools and third-party tools
When you visit this website, your surfing behavior can be statistically evaluated. This is mainly done with so-called analysis programs.
Detailed information on these analysis programs can be found in the following data protection declaration.
EU dispute resolution
The European Commission provides a platform for online dispute resolution (ODR): https://ec.europa.eu/consumers/odr.
Our e-mail address can be found above in the site notice.
Dispute resolution proceedings in front of a consumer arbitration board
We are not willing or obliged to participate in dispute resolution proceedings in front of a consumer arbitration board.
Liability for Contents
As service providers, we are liable for own contents of these websites according to Paragraph 7, Sect. 1 German Telemedia Act (TMG). However, according to Paragraphs 8 to 10 German Telemedia Act (TMG), service providers are not obligated to permanently monitor submitted or stored information or to search for evidences that indicate illegal activities.
Legal obligations to removing information or to blocking the use of information remain unchallenged. In this case, liability is only possible at the time of knowledge about a specific violation of law. Illegal contents will be removed immediately at the time we get knowledge of them.
Liability for Links
Our offer includes links to external third party websites. We have no influence on the contents of those websites, therefore we cannot guarantee for those contents. Providers or administrators of linked websites are always responsible for their own contents.
The linked websites had been checked for possible violations of law at the time of the establishment of the link. Illegal contents were not detected at the time of the linking. A permanent monitoring of the contents of linked websites cannot be imposed without reasonable indications that there has been a violation of law. Illegal links will be removed immediately at the time we get knowledge of them.
Copyright
Contents and compilations published on these websites by the providers are subject to German copyright laws. Reproduction, editing, distribution as well as the use of any kind outside the scope of the copyright law require a written permission of the author or originator. Downloads and copies of these websites are permitted for private use only.
The commercial use of our contents without permission of the originator is prohibited.
Copyright laws of third parties are respected as long as the contents on these websites do not originate from the provider. Contributions of third parties on this site are indicated as such. However, if you notice any violations of copyright law, please inform us. Such contents will be removed immediately.
2. Hosting und Content Delivery Networks (CDN)
External Hosting
This website is hosted by an external service provider (hoster). The personal data collected on this website is stored on the host’s servers. This can be v. a. IP addresses, contact requests, meta and communication data, contract data, contact details, names, website access and other data generated via a website.
The hoster is used for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 Para. 1 lit. b DSGVO) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 Para 1 lit. f GDPR).
Our hoster will only process your data to the extent that this is necessary to fulfill its performance obligations and will follow our instructions in relation to this data.
We use the following hosting:
SiteGround Hosting EOOD. 8 Racho P. Kazandzhiata Str., floor 3 1166 Sofia BULGARIA
Conclusion of a contract for order processing
In order to ensure data protection-compliant processing, we have concluded an order processing contract with our hoster.
Cloudflare
We use the “Cloudflare” service. The provider is Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA (hereinafter “Cloudflare”).
Cloudflare offers a globally distributed content delivery network with DNS. The information transfer between your browser and our website is technically routed via the Cloudflare network. This enables Cloudflare to analyze the traffic between your browser and our website and to act as a filter between our servers and potentially malicious traffic from the internet. Cloudflare can also use cookies or other technologies to recognize Internet users, which are only used for the purpose described here.
The use of Cloudflare is based on our legitimate interest in providing our website as error-free and secure as possible (Art. 6 Para. 1 lit. f GDPR).
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.cloudflare.com/privacypolicy/.
You can find more information about security and data protection at Cloudflare here: https://www.cloudflare.com/privacypolicy/.
Conclusion of a contract for order processing
In order to ensure data protection-compliant processing, we have concluded an order processing contract with Cloudflare.
3. General information
Data Protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
If you use this website, various personal data will be collected. Personal data is data with which you can be personally identified. This data protection declaration explains what data we collect and what we use it for. It also explains how and for what purpose this happens.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
The person responsible for data processing on this website is:
Annemarie Strehl
Fritz-Ritter-Str.10
07747 Jena
Germany
Telephone: +491607941061
Email: hi[at]annemariestrehl[dot]com
The responsible person is a natural or legal person who, alone or together with others, decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).
Data storage period
Unless a specific storage period has been specified in this data protection declaration, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. tax or commercial law retention periods); in the latter case, the data will be deleted once these reasons have ceased to exist.
Note on data transfer into USA and to third parties
Among other things, we use tools from companies based in the USA or other third countries that are not secure under data protection law. If these tools are active, your personal data can be transferred to these third countries and processed there. We would like to point out that in these countries no level of data protection comparable to that of the EU can be guaranteed. For example, US companies are obliged to release personal data to security authorities without you as the person concerned being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. secret services) will process, evaluate and permanently store your data on US servers for monitoring purposes. We have no influence on these processing activities.
Rejection of agreement for data transfer
Many data processing operations are only possible with your express consent. You can revoke consent that you have already given at any time. The legality of the data processing that took place up until the revocation remains unaffected by the revocation.
Right to object to data collection in special cases and to direct advertising (Art. 21 GDPR)
IF THE DATA PROCESSING IS BASED ON ART. 6 ABS. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH A PROCESSING IS BASED CAN BE FOUND IN THIS DATA PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR CONCERNED PERSONAL DATA UNLESS WE CAN PROVE COMPREHENSIVE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOM OBJECTION ACCORDING TO ARTICLE 21 (1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR DIRECT ADVERTISING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR SUCH ADVERTISING PURPOSES; THIS ALSO APPLIES TO PROFILING TO THE EXTENT RELATED TO SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT ADVERTISING PURPOSES (OBJECTION ACCORDING TO ART. 21 (2) GDPR).
Right of appeal to the competent supervisory authority
In the event of violations of the GDPR, those affected have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another person responsible, this will only be done to the extent that it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.
Information, deletion and correction
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if necessary, a right to correction or deletion of this data at any time. You can contact us at any time if you have any further questions on the subject of personal data.
Right to restriction of processing
You have the right to request the restriction of the processing of your personal data. You can contact us at any time for this. The right to restriction of processing exists in the following cases:
If you dispute the accuracy of your personal data stored by us, we usually need time to check this. For the duration of the examination, you have the right to request that the processing of your personal data be restricted.
If the processing of your personal data happened/is happening unlawfully, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to demand that the processing of your personal data be restricted instead of being deleted.
If you have lodged an objection in accordance with Art. 21 (1) GDPR, your interests and ours must be weighed up. As long as it has not yet been determined whose interests prevail, you have the right to demand that the processing of your personal data be restricted.
If you have restricted the processing of your personal data, this data – apart from its storage – may only be used with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State are processed.
Objecting to Promotional Emails
We hereby object to the use of contact data published as part of the imprint obligation to send unsolicited advertising and information material. The site operators expressly reserve the right to take legal action in the event of unsolicited advertising being sent, such as spam e-mails.
Data Collection
Cookies
Our website uses so-called “cookies”. Cookies are small text files and do not cause any damage to your end device. They are stored on your end device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted after your visit. Permanent cookies remain stored on your end device until you delete them yourself or until they are automatically deleted by your web browser.
In some cases, cookies from third-party companies can also be stored on your end device when you enter our site (third-party cookies). These enable us or you to use certain services of the third-party company (e.g. cookies for processing payment services).
Cookies have different functions. Numerous cookies are technically necessary because certain website functions would not work without them (e.g. the shopping cart function or the display of videos). Other cookies are used to evaluate user behavior or to display advertising.
Cookies that are required to carry out the electronic communication process (necessary cookies) or to provide certain functions you want (functional cookies, e.g. for the shopping cart function) or to optimize the website (e.g. cookies for measuring web audience). are stored on the basis of Art. 6 Para. 1 lit. f GDPR, unless another legal basis is given. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of its services. If consent to the storage of cookies was requested, the relevant cookies are stored exclusively on the basis of this consent (Article 6 (1) (a) GDPR); the consent can be revoked at any time.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be restricted.
If cookies are used by third-party companies or for analysis purposes, we will inform you of this separately in this data protection declaration and, if necessary, ask for your consent.
Complianz – Agreement to Cookies
Our website uses the Complianz cookie consent technology to obtain your consent to the storage of certain cookies on your end device and to document this in accordance with data protection regulations. The provider of this technology is Complianz B.V., Atoomweg 6B, 9743 AK Groningen, The Netherlands (hereinafter “Complianz”).
When you enter our website, a connection to the Complianz servers is established in order to obtain your consent and other explanations for the use of cookies. Complianz then stores a cookie in your browser in order to be able to allocate the consent you have given or revoke it to you. The data collected in this way is stored until you request us to delete it, delete the compliance cookie yourself, or the purpose for storing the data no longer applies. Mandatory statutory retention requirements remain unaffected.
Complianz is used to obtain the legally required consent for the use of cookies. The legal basis for this is Article 6 (1) (c) GDPR.
Server-Log-Data
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
- Browser type and browser version
- operating system used
- Referrer URL
- Host name of the accessing computer
- Time of server request
- IP address
- This data is not merged with other data sources.
This data is collected on the basis of Article 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of his website – the server log files must be recorded for this purpose.
Inquiry by e-mail, telephone or fax
If you contact us by e-mail, telephone or fax, your inquiry including all resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.
This data is processed on the basis of Article 6 (1) (b) GDPR if your request is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of inquiries addressed to us (Art. 6 Para. 1 lit. f GDPR) or on your consent (Art. 6 Para. 1 lit. a GDPR) if this was queried.
The data you sent to us via contact requests will remain with us until you request deletion, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.
5. Analysis Tools and Advertising
Google Analytics
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics enables the website operator to analyze the behavior of website visitors. The website operator receives various usage data, such as B. Page views, length of stay, operating systems used and origin of the user. This data may be summarized by Google in a profile that is assigned to the respective user or their device.
Furthermore, we can use Google Analytics u. Record your mouse and scroll movements and clicks. Furthermore, Google Analytics uses various modeling approaches to supplement the recorded data sets and uses machine learning technologies for data analysis.
Google Analytics uses technologies that enable the user to be recognized for the purpose of analyzing user behavior (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transmitted to a Google server in the USA and stored there.
This analysis tool is used on the basis of Article 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior in order to optimize both its website and its advertising. If a corresponding consent was requested (e.g. consent to the storage of cookies), the processing takes place exclusively on the basis of Article 6 Paragraph 1 lit. the consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.
IP anonymization
We have activated the IP anonymization function on this website. As a result, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before it is transmitted to the USA. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
browser plug-in
You can prevent Google from collecting and processing your data by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout.
You can find more information on how Google Analytics handles user data in the Google data protection declaration: https://support.google.com/analytics/answer/6004245.
order processing
We have concluded an order processing contract with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
Demographic characteristics in Google Analytics
This website uses the “demographic characteristics” function of Google Analytics in order to be able to show website visitors relevant advertisements within the Google advertising network. This allows reports to be created that contain statements about the age, gender and interests of the site visitors. This data comes from interest-based advertising from Google and visitor data from third-party providers. This data cannot be assigned to a specific person. You can deactivate this function at any time via the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics as described in the point “Objection to data collection”.
storage duration
Data stored by Google at the user and event level that is linked to cookies, user IDs (e.g. User ID) or advertising IDs (e.g. DoubleClick cookies, Android advertising ID) are anonymized after 2 months or deleted. You can find details on this under the following link: https://support.google.com/analytics/answer/7667196
Newsletter
newsletter data
If you would like to receive the newsletter offered on the website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter . Further data is not collected or only collected on a voluntary basis. We use this data exclusively for sending the requested information and do not pass it on to third parties.
The processing of the data entered in the newsletter registration form takes place exclusively on the basis of your consent (Art. 6 Para. 1 lit. a DSGVO). You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the “unsubscribe” link in the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation.
The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you unsubscribe from the newsletter or after it no longer serves any purpose. We reserve the right to delete or block e-mail addresses from our newsletter distribution list at our own discretion within the scope of our legitimate interest in accordance with Art. 6 Para. 1 lit. f GDPR.
After you have been removed from the newsletter distribution list, your e-mail address may be stored in a blacklist by us or the newsletter service provider in order to prevent future mailings. The data from the blacklist is only used for this purpose and is not merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). Storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interests.
MailerLite
This website uses MailerLite to send newsletters. The provider is UAB “MailerLite”, J. Basanaviciaus 15, LT-03108 Vilnius, Lithuania (hereinafter MailerLite).
MailerLite is a service with which, among other things, the sending of newsletters can be organized and analyzed. The data you enter for the purpose of subscribing to the newsletter will be stored on the MailerLite servers.
If you do not want an analysis by MailerLite, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message.
Data analysis by MailerLite
With the help of MailerLite it is possible for us to analyze our newsletter campaigns. So we can e.g. For example, see whether a newsletter message has been opened and which links, if any, have been clicked. In this way, we can determine, among other things, which links were clicked particularly often.
We can also see whether certain previously defined actions were carried out after opening/clicking (conversion rate). We can e.g. B. recognize whether you have made a purchase after clicking on the newsletter.
MailerLite also allows us to subdivide (“cluster”) the newsletter recipients into different categories. The newsletter recipients can e.g. B. by age, gender or place of residence. In this way, the newsletters can be better adapted to the respective target groups.
For detailed information on MailerLite’s features, please visit the following link: https://www.mailerlite.com/features.
MailerLite’s privacy policy can be found at: https://www.mailerlite.com/legal/privacy-policy.
legal basis
The data processing takes place on the basis of your consent (Art. 6 Para. 1 lit. a DSGVO). You can revoke this consent at any time for the future.
storage duration
The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you unsubscribe from the newsletter or after the purpose has ceased to exist. We reserve the right to delete or block e-mail addresses from our newsletter distribution list at our own discretion within the scope of our legitimate interest in accordance with Art. 6 Para. 1 lit. f GDPR. Data stored by us for other purposes remain unaffected.
After you have been removed from the newsletter distribution list, your e-mail address may be stored in a blacklist by us or the newsletter service provider in order to prevent future mailings. The data from the blacklist is only used for this purpose and is not merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). Storage in the blacklist is not limited in time. You can object to the storage if your interests outweigh our legitimate interests.
Conclusion of a contract for order processing
We have concluded an order processing contract with MailerLite. This is a contract required by data protection law, which ensures that MailerLite processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.
7. Plugins and Tools
YouTube with enhanced privacy
This website includes videos from YouTube. The website operator is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
We use YouTube in the extended data protection mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. However, the extended data protection mode does not necessarily exclude the transfer of data to YouTube partners. This is how YouTube establishes a connection to the Google DoubleClick network, regardless of whether you are watching a video.
As soon as you start a YouTube video on this website, a connection to the YouTube servers is established. The YouTube server is informed which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, YouTube can save various cookies on your end device after starting a video or use comparable recognition technologies (e.g. device fingerprinting). In this way, YouTube can receive information about visitors to this website. This information is used i.a. used to collect video statistics, improve usability and prevent fraud attempts.
If necessary, after the start of a YouTube video, further data processing operations can be triggered over which we have no influence.
YouTube is used in the interest of an attractive presentation of our online offers. This represents a legitimate interest within the meaning of Article 6 Paragraph 1 Letter f GDPR. If a corresponding consent has been requested, the processing takes place exclusively on the basis of Article 6 Paragraph 1 Letter a GDPR; the consent can be revoked at any time.
You can find more information about data protection on YouTube in their data protection declaration at: https://policies.google.com/privacy.
Vimeo without tracking (Do Not Track)
This website uses plugins from the video portal Vimeo. The provider is Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.
If you visit one of our pages equipped with Vimeo videos, a connection to the Vimeo servers will be established. The Vimeo server is informed which of our pages you have visited. In addition, Vimeo obtains your IP address. However, we have set Vimeo so that Vimeo will not track your user activities and will not set cookies.
Vimeo is used in the interest of an attractive presentation of our online offers. This represents a legitimate interest within the meaning of Article 6 Paragraph 1 Letter f GDPR. If a corresponding consent has been requested, the processing takes place exclusively on the basis of Article 6 Paragraph 1 Letter a GDPR; the consent can be revoked at any time.
The data transfer to the USA is based on the standard contractual clauses of the EU Commission and, according to Vimeo, on “legitimate business interests”. Details can be found here: https://vimeo.com/privacy.
For more information on how to handle user data, see Vimeo’s privacy policy at: https://vimeo.com/privacy.
Google Web Fonts (local hosting)
This site uses so-called web fonts provided by Google for the uniform display of fonts. The Google Fonts are installed locally. There is no connection to Google servers.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s data protection declaration: https://policies.google.com/privacy.
Wordfence
We have integrated Wordfence on this website. The provider is Defiant Inc., Defiant, Inc., 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter Wordfence).
Wordfence is used to protect our website from unwanted access or malicious cyber attacks. For this purpose, our website establishes a permanent connection to the Wordfence servers so that Wordfence can compare and, if necessary, block its databases with the access made to our website.
Wordfence is used on the basis of Article 6 (1) (f) GDPR. The website operator has a legitimate interest in protecting its website from cyber attacks as effectively as possible. If a corresponding consent has been requested, the processing takes place exclusively on the basis of Article 6 (1) (a) GDPR; the consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.wordfence.com/help/general-data-protection-regulation/.
Conclusion of a contract for order processing
We have concluded an order processing contract with Wordfence. This is a contract required by data protection law, which ensures that Wordfence only processes the personal data of our website visitors according to our instructions and in compliance with the GDPR.
VG word Plugin
Cookies and traffic reports
We use “session cookies” from VG Wort, Munich, to measure access to texts in order to record the probability of copying. Session cookies are small pieces of information that a provider stores in the memory of the visitor’s computer. A randomly generated unique identification number, a so-called session ID, is stored in a session cookie. A cookie also contains information about its origin and the storage period. Session cookies cannot store any other data. These measurements are carried out by Kantar Germany GmbH according to the Scalable Central Measurement Method (SZM). They help to determine the copy probability of individual texts to compensate authors and publishers for legal claims. We do not collect any personally identifiable information through cookies.
A use of our offers is also possible without cookies. Most browsers are set to automatically accept cookies. However, you can deactivate the storage of cookies or set your browser so that it notifies you as soon as cookies are sent.
The data policy of VG Wort can be seen here.
Data protection declaration for the use of the scalable central measurement method
Our website and our mobile website use the “Scalable Central Measurement Method” (SZM) from Kantar Germany GmbH to determine statistical parameters to determine the copy probability of texts.
Anonymous measurements are collected. The access number measurement alternatively uses a session cookie or a signature, which is created from various automatically transmitted information from your browser, to recognize computer systems. IP addresses are only processed in an anonymous form.
The process was developed with data protection in mind. The only aim of the procedure is to determine the copy probability of individual texts.
At no time individual users are identified. Your identity is always protected. You will not receive any advertising through the system.
Prosodia Plugin
definition
The terms used below include those from Article 4 of the General Data Protection Regulation (GDPR). The Prosodia data policy can be viewed here.
The person responsible within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other data protection regulations is the manufacturer of the Prosodia plugin specified in the imprint.
Scope of processing of personal data
In principle, we only process the personal data of our users to the extent that this is necessary to provide a functioning plugin. The processing of personal data of our users takes place regularly only with the consent of the user. An exception applies in such cases in which it is not possible to obtain prior consent for actual reasons and the processing of the data is permitted by statutory provisions.
Legal basis for processing personal data
Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6 (1) (a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
Article 6 (1) (b) GDPR serves as the legal basis for the processing of personal data required to fulfill a contract to which the data subject is a party. This also applies to processing operations that are necessary to carry out pre-contractual measures.
Insofar as processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Article 6 (1) (c) GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6 Paragraph 1 lit. d GDPR serves as the legal basis.
If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and fundamental freedoms of the person concerned do not outweigh the first interest, Article 6 Paragraph 1 Letter f GDPR serves as the legal basis for the processing.
Data Erasure and Storage Duration
The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage no longer applies. Storage can also take place if this has been provided for by the European or national legislator in EU regulations, laws or other regulations to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.
data transmission
Data transmission on the Internet to our server is encrypted using HTTPS and TLS protocols. An unencrypted transmission is not possible on the part of our server. The data is encrypted by our plugin or your web browser, then transmitted and finally decrypted by our server.
Provision of the plugin
Description and scope of data processing
The plugin does not send any data to the manufacturer without the user’s consent. Data that can be sent to the manufacturer is listed below. The plugin does not create or collect any usage data.
Check function for counters
Description and scope of data processing
You have the option of having us check the counters integrated into your website by the plugin. This is done via the “Check” link, which can be found in several places in the plugin. If you click on this check link, the following data will be sent to our server:
- through your access with a web browser:
- Information about the web browser type and version used,
- the operating system of the user,
- the IP address of the user,
- date and time of access,
- the website from which the user’s system reaches our server,
- Data contained in the check link:
- the public counter,
- the link to the web page (WordPress page) where the counter should be located.
The data that is sent through your access with a web browser is only stored in the log files of our system if an error occurs when the corresponding page is called up. This does not affect the user’s IP address or other data that enable the data to be assigned to a user.
The data contained in the verification link is used by our server to test whether the public counter is on the website (WordPress site) contained in the verification link.
We temporarily store the user’s IP address solely to determine how often the user uses the check function within a period of time.
This data is not stored together with other personal data of the user.
Legal basis for data processing
The legal basis for the temporary storage of the data is Article 6 Paragraph 1 Letter f or a GDPR.
purpose of data processing
The temporary storage of the IP address by the server is necessary to enable delivery of the accessed website to the user’s computer. For this purpose, the IP address of the user must remain stored for the duration of the session.
The temporary storage of the data in the test link is necessary in order to carry out the test.
We temporarily store the IP address of the user solely to protect our check function from misuse (excessive use).
Duration of storage
The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data to provide the check function for counters, this is the case when the respective session has ended. There is no permanent storage.
To protect our system, we store the IP address of the user for a maximum of one day.
Amazon Affiliate Programme
The provider is Amazon Europe Core S.à.r.l. Details can be found in Amazon’s data protection declaration at: https://www.amazon.de/gp/help/customer/display.html?nodeId=201909010.
Our booking tools
Calendly
We use Calendly as our German-language booking tool for making appointments. “Calendly” is an offer from Calendly, LLC, 3423 Piedmont Road NE, Atlanta, GA 30305-1754, United States.
When you click on the online appointment booking link, you will automatically be connected to our appointment booking page on Calendly. After choosing your appointment, confirming it and entering your contact details and concerns, you will receive an email from Calendly confirming your appointment. When arranging an appointment, it is generally necessary to provide personal data. Please refer to the form to be filled out to find out what this is.
Further information about Calendly and data protection can be found here.
In addition, a Google Meet link is sent with the confirmation link after the booking is complete, via which the digital conversation takes place.
Your details from the Calendly form, including the data you provide there, will be stored by us and by Calendly for the purpose of processing the request and in the event of follow-up questions. This data remains with us and Calendly until you ask us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. appointment has taken place). Mandatory legal provisions – in particular retention periods – remain unaffected.
Order processing
It cannot be ruled out that your data will be transmitted to the USA and thus to an unsafe third country. The Calendly Terms of Use, which we agreed to when we registered with Calendly, also contains the following data processing addendum: https://calendly.com/pages/dpa, with which the Calendly company promises you additional protection with regard to data transmission to the USA in order to to meet the GDPR requirements. There is currently neither an adequacy decision by the EU nor any other suitable guarantees for the USA. The protection of your data cannot be guaranteed in the destination country USA.
We have concluded an order processing contract with Calendly and fully implement the strict requirements of the Liechtenstein data protection authorities when using Calendly.
Our social media appearances
Data processing by social networks
We maintain publicly accessible profiles on social networks. The social networks we use in detail can be found below.
Social networks such as Facebook, Twitter, etc. can usually analyze your user behavior comprehensively when you visit their website or a website with integrated social media content (e.g. Like buttons or advertising banners). Visiting our social media presence triggers numerous data protection-related processing operations. In detail:
If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. Under certain circumstances, however, your personal data can also be recorded if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies that are stored on your end device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you both inside and outside of the respective social media presence. If you have an account with the respective social network, interest-based advertising can be displayed on all devices on which you are logged in or were logged in.
Please also note that we cannot trace all processing operations on the social media portals. Depending on the provider, additional processing operations may therefore be carried out by the operators of the social media portals. Details can be found in the terms of use and data protection regulations of the respective social media portals.
legal basis
Our social media appearances should ensure the widest possible presence on the Internet. This is a legitimate interest within the meaning of Article 6 (1) (f) GDPR. The analysis processes initiated by the social networks may be based on different legal bases, which must be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 Para. 1 lit. a DSGVO).
Controller and assertion of rights
If you visit one of our social media presences (e.g. Facebook), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. In principle, you can exercise your rights (information, correction, deletion, restriction of processing, data transferability and complaints) both against us as well as the operator of the respective social media portal (e.g. vs. Facebook).
Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely based on the corporate policy of the respective provider.
storage duration
The data collected directly by us via the social media presence will be deleted from our systems as soon as you request deletion, revoke your consent to storage or the purpose for data storage no longer applies. Saved cookies remain on your end device until you delete them. Mandatory legal provisions – especially retention periods – remain unaffected.
We have no influence on the storage period of your data, which is stored by the operators of the social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their data protection declaration, see below).
Social networks in detail
We have a profile on Facebook. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. According to Facebook, the data collected is also transferred to the USA and other third countries.
We have concluded an agreement on joint processing (Controller Addendum) with Facebook. This agreement defines which data processing operations we or Facebook are responsible for when you visit our Facebook page. You can view this agreement at the following link: https://www.facebook.com/legal/terms/page_controller_addendum.
You can adjust your advertising settings independently in your user account. To do this, click on the following link and log in: https://www.facebook.com/settings?tab=ads.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.
Details can be found in Facebook’s privacy policy: https://www.facebook.com/about/privacy/.
We use the short message service Twitter. The provider is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.
You can adjust your Twitter data protection settings independently in your user account. To do this, click on the following link and log in: https://twitter.com/personalization.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://gdpr.twitter.com/en/controller-to-controller-transfers.html.
Details can be found in Twitter’s privacy policy: https://twitter.com/de/privacy.
We have a profile on Instagram under https://www.instagram.com/annemariestrehlfoto/ and https://www.instagram.com/annemarie.strehl. The provider is Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://help.instagram.com/519522125107875 and https://de-de.facebook.com/help/5669946660333381.
Details on how they handle your personal data can be found in Instagram’s data protection declaration: https://help.instagram.com/519522125107875.
We have a profile on Pinterest under pinterest.de/annemariestrehlvideos/. The operator is Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland. Details on how they handle your personal data can be found in Pinterest’s privacy policy: https://policy.pinterest.com/de/privacy-policy.
We have a profile on XING. The provider is New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany. Details on how they handle your personal data can be found in the XING data protection declaration: https://privacy.xing.com/de/datenschutzerklaerung.
We have a profile on LinkedIn unter linkedin.com/in/annemariestrehl/ as well as a page https://www.linkedin.com/company/91588979/. LinkedIn is no integrated into this website.
The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn uses advertising cookies.
If you would like to disable LinkedIn advertising cookies, please use the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs.
Details on how they handle your personal data can be found in LinkedIn’s data protection declaration: https://www.linkedin.com/legal/privacy-policy.
YouTube
We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Details on how they handle your personal data can be found in the YouTube privacy policy: https://policies.google.com/privacy?hl=en.
TikTok
We have a profile on TikTok. The provider is TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland. Details on how they handle your personal data can be found in the TiKTok privacy policy: https://www.tiktok.com/legal/privacy-policy?lang=en.
Data transmission to third countries is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.tiktok.com/legal/privacy-policy?lang=en.
Email Privacy Policy
Information Provided as Mandated by Article 13 GDPR
If this is your first interaction with us, Art. 12, 13 GDPR mandates that we make available to you the following mandatory data protection related information: If you are contacting us via e-mail, we will process your personal data only if we have a legitimate interest in the processing of this data (Art. 6(1)(f) GDPR), if you have consented to the processing of your data (Art. 6(1)(a) GDPR), if the processing of the data is required for the development, establishment, content or modification of a legal relationship between you and our company (Art. 6(1)(b) GDPR) or if any other legal provision permits the processing of this data.
Your personal data will remain in our possession until you ask us to delete the data or you revoke your consent to store the data or if the purpose the data stored is required for no longer exists (e.g., once your request has been conclusively processed). This shall be without prejudice to any compelling statutory provisions – in particular tax and commercial law based retention periods.
You have the right to at any time receive free information concerning the origins, recipients and purpose of your data archived by us. You also have a right to object, to data portability and a right to log a complaint with the competent supervisory agency. Moreover, you can demand the correction, eradication and, under certain circumstances, the restriction of the processing of your personal data. For more details, please consult our Data Privacy Policy.
Data transfer to customers: Swiss Transfer
Either email or the Swiss Transfer service is used to transmit data (photos, videos, texts, etc.) to customers. Swiss Transfer is a Swiss company with servers that are hosted in Switzerland and are therefore subject to the GDPR regulations, which offers a particularly high level of confidentiality and security when dealing with customer transfers. The terms of use can be viewed here.
Data is kept for up to 30 days (or shorter if you wish). The link to this is shared via email, Slack or link. And there is the possibility of password protection.