Personal data (usually referred to just as “data” below) will be processed by me to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents, and the services offered there.
Per Art. 4 No. 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as the “GDPR”), “processing” refers to any operation or set of operations such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction performed on personal data, whether by automated means or not.
The following privacy policy is intended to inform you in particular about the type, scope, purpose, duration, and legal basis for the processing of such data either under our own control or in conjunction with others. We also inform you below about the third-party components we use to optimize our website and improve the user experience which may result in said third parties also processing data they collect and control.
My privacy policy is structured as follows:
I. Information about me as controller of your data
II. The rights of users and data subjects
III. Information about the data processing
The party responsible for this website (the “controller”) for purposes of data protection law is:
Heinz-Hermann Maria Hoppe
Tassiloweg 18
85737 Ismaning (Munich)
Germany
Telephone: +49 (0)89 20184595
Fax: +49 (0)89 20184594
Email: hoppe@hhmh-kunst.de
With regard to the data processing to be described in more detail below, users and data subjects have the right
-to confirmation of whether data concerning them is being processed, information about the data being processed, further information about the nature of the data processing, and copies of the data (cf. also Art. 15 GDPR);
-to correct or complete incorrect or incomplete data (cf. also Art. 16 GDPR);to the immediate deletion of data concerning them (cf. also Art. 17 DSGVO), or, alternatively, if further processing is necessary as stipulated in Art. 17 Para. 3 GDPR, to restrict said processing per Art. 18 GDPR;to receive copies of the data concerning them and/or provided by them and to have the same transmitted to other providers/controllers (cf. also Art. 20 GDPR);
-to file complaints with the supervisory authority if they believe that data concerning them is being processed by the controller in breach of data protection provisions (see also Art. 77 GDPR).
In addition, the controller is obliged to inform all recipients to whom it discloses data of any such corrections, deletions, or restrictions placed on processing the same per Art. 16, 17 Para. 1, 18 GDPR. However, this obligation does not apply if such notification is impossible or involves a disproportionate effort. Nevertheless, users have a right to information about these recipients.
Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the controller’s future processing of their data pursuant to Art. 6 Para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct advertising is permissible.
Your data processed when using my website will be deleted or blocked as soon as the purpose for its storage ceases to apply, provided the deletion of the same is not in breach of any statutory storage obligations or unless otherwise stipulated below.
My website is hosted by Host Europe GmbH, c/o WeWork, Friesenplatz 4, 50672 Cologne. I have concluded an order processing agreement (AVV) with Host Europe GmbH. This is a contract required by data protection law that regulates the use of personal data by Host Europe GmbH and ensures that the data is only processed in compliance with the DSGVO. For more information, please visit https://www.hosteurope.de/ AGB/ Datenschutzerklaerung/. The services of Host Europe GmbH for the presentation of my website are based on Art. 6 (1) lit. f DSGVO. I have a legitimate interest in a professional presentation of my website.
My website is SSL encrypted. SSL encryption ensures that the data you transmit cannot be read by third parties. You can recognize encrypted websites by a URL web address that begins with “https://” instead of “http://” and by the lock symbol in your browser bar.
No cookies are set in your browser by visiting my website.
For technical reasons, in particular to ensure a secure and stable Internet presence, data is transmitted by your Internet browser to me or to my web space provider Host Europe GmbH. With these so-called server log files, access data is stored: the IP address of the visitor, the time of access with indication of the time zone, the request of the visitor (HTTP request method, e.g. “GET”), the requested file (e.g. “robots. txt”) and the version of the HTTP protocol used, the HTTP status code with which the server responded, the size of the server response in bytes, the HTTP referrer (if set), the user agent of the visitor and the domain called up by the visitor, and the error log in the event of errors.
However, the access log behavior of the web server has been changed and the logs are anonymized. The “Anonymized” setting causes the last block to be changed to “.0” for IPv4 addresses. For IPv6 addresses only the first two blocks are stored and the last six blocks are changed to “::”. This means that it is no longer possible to draw conclusions about the visitors to my website.
The anonymized data collected in this way is temporarily stored, but not together with other data from you. The storage takes place on the legal basis of Art. 6 para. 1 lit. f) DSGVO. My legitimate interest lies in the improvement, stability, functionality and security of my website.
In my website I use embedded Google Fonts to display the fonts. This is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as “Google”. For the display of the fonts, however, no connection to a Google server is established when my website is called up, because the fonts are embedded locally and loaded from my server.
The data you submit when ordering goods and/or services from me will have to be processed in order to fulfill your order. Please note that orders cannot be processed without providing this data. Note: Data transmissions on the Internet or by e-mail can have security gaps!
The legal basis for this processing is Art. 6 Para. 1 lit. b) GDPR.
After your order has been completed, your personal data will be deleted, but only after the retention periods required by tax and commercial law.
In order to process your order, I will share your data with the shipping company responsible for delivery to the extent required to deliver your order and/or with the payment service provider to the extent required to process your payment. The legal basis for the transfer of this data is Art. 6 Para. 1 lit. b) GDPR.
The legal basis for the transfer of this data is Art. 6 Para. 1 lit. b) GDPR.
If you contact me in writing (letter/e-mail) or by telephone, the data you provide will be used for the purpose of processing your request. I must have this data in order to process and answer your inquiry; otherwise I will not be able to answer it in full or at all.
The legal basis for this data processing is Art. 6 Para. 1 lit. b) GDPR.
Your data will be deleted once we have fully answered your inquiry and there is no further legal obligation to store your data, such as if an order or contract resulted therefrom.
My website uses Google Fonts to display fonts. This is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland (hereinafter: Google). For the display of the fonts, however, no connection to a Google server is established when my website is called up, because the fonts are embedded locally and loaded from my server.
Model Data Protection Statement for Anwaltskanzlei Weiß & Partner
Adapted by the website owner.