Privacy Policy
Contents:
[1] Data Protection at a Glance
General Information
The following information provides a brief overview of what happens to your personal data when you visit this website. Personal data refers to any data that can personally identify you. For detailed information on data protection, please refer to our privacy policy listed below this text.
Data Collection on This Website
Who is Responsible for Data Collection on This Website?
Data processing on this website is carried out by the website operator. You can find their contact details in the „Information About the Data Controller“ section of this privacy policy.
How Do We Collect Your Data?
Your data is collected in two ways:
- Data You Provide: We collect data when you actively provide it to us. This can include information you enter into an e-mail when you contact us, for example.
- Automatically Collected Data: Some data is collected automatically with your consent when you visit the website. This includes technical data such as your internet browser, operating system, or the time of page access. The collection of this data occurs automatically as soon as you enter this website.
What Do We Use Your Data For?
The data is collected to ensure the proper functioning of the website. The data you provide to us voluntarily can be used to contact you in the future.
What Rights Do You Have Regarding Your Data?
You have the right to receive information about the origin, recipient, and purpose of your stored personal data at any time, free of charge. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you can revoke this consent at any time for the future. Furthermore, you have the right, under certain circumstances, to request the restriction of the processing of your personal data. You also have the right to lodge a complaint with the competent supervisory authority. For this and other questions regarding data protection, you can contact us at any time.
[2] Hosting
We host the content of our website with the following provider:
External Hosting
This website is externally hosted. The personal data collected on this website is stored on the servers of the hosting provider(s). This may include, in particular, IP addresses, contact requests, meta- and communication data, contract data, contact details, names, website access, and other data generated via a website.
External hosting is carried out for the purpose of fulfilling our contract with our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of providing a secure, fast, and efficient provision of our online offering by a professional provider (Art. 6(1)(f) GDPR). If appropriate consent has been obtained, processing will only be carried out on the basis of Art. 6(1)(a) GDPR and § 25(1) TTDSG, insofar as the consent includes the storage of cookies or access to information on the user’s end device (e.g., device fingerprinting) in accordance with TTDSG. Consent can be revoked at any time.
Our hosting provider(s) will only process your data to the extent necessary to fulfill their obligations and will comply with our instructions regarding this data.
We use the following hosting provider:
SiteGround Spain S.L. Calle de Prim 19, 28004 Madrid, Spain
[3] General Notes and Mandatory Information
Data Protection
The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
When you use this website, various personal data is collected. Personal data is data that can be used to personally identify you. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission over the Internet (e.g., when communicating by email) may have security vulnerabilities. Complete protection of data against access by third parties is not possible.
Information About the Data Controller
The data controller responsible for data processing on this website is:
Anna Lena Menne
Murellenweg 20
14052 Berlin
Telefon: +4915773816697
E-Mail: a.menne@digitalpositionality.com
The responsible entity is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Storage Duration
Unless a more specific storage duration is mentioned in this privacy policy, your personal data will remain with us until the purpose for data processing ceases. If you make a legitimate request for deletion or withdraw your consent for data processing, your data will be deleted, provided we have no other legally permissible reasons for retaining your personal data (e.g., statutory retention periods under tax or commercial law); in the latter case, deletion will occur after these reasons no longer apply.
General Information About the Legal Bases for Data Processing on This Website
If you have given your consent to data processing, we will process your personal data based on Article 6(1)(a) GDPR or Article 9(2)(a) GDPR, if special data categories under Article 9(1) GDPR are processed. In the case of explicit consent for the transfer of personal data to third countries, data processing will also be based on Article 49(1)(a) GDPR. If you have consented to the storage of cookies or access to information on your end device (e.g., via device fingerprinting), data processing will also take place based on § 25(1) TTDSG. Consent can be revoked at any time. If your data is required for the performance of a contract or for pre-contractual measures, we will process your data based on Article 6(1)(b) GDPR. Furthermore, we will process your data if it is necessary to fulfill a legal obligation based on Article 6(1)(c) GDPR. Data processing may also occur based on our legitimate interests under Article 6(1)(f) GDPR. The relevant legal bases for data processing in individual cases are further explained in the following paragraphs of this privacy policy.
Recipients of Personal Data
In the course of our business activities, we collaborate with various external entities. In some cases, the transmission of personal data to these external entities may be necessary. We only disclose personal data to external entities when required as part of a contract fulfillment, when we are legally obligated to do so (e.g., sharing data with tax authorities), when we have a legitimate interest under Article 6(1)(f) GDPR in sharing the data, or when another legal basis permits data sharing. When using data processors, we only disclose personal data of our customers based on a valid data processing agreement. In the case of joint processing, a joint processing agreement is concluded. If your data is required for the performance of a contract or for pre-contractual measures, we will process your data based on Article 6(1)(b) GDPR. Furthermore, we will process your data if it is necessary to fulfill a legal obligation based on Article 6(1)(c) GDPR. Data processing may also occur based on our legitimate interests under Article 6(1)(f) GDPR. The relevant legal bases for data processing in individual cases are further explained in the following paragraphs of this privacy policy.
Withdrawal of Your Consent for Data Processing
Many data processing operations are only possible with your explicit consent. You can revoke consent that you have already given at any time. The legality of data processing carried out before the revocation remains unaffected by the revocation.
Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR)
IF DATA PROCESSING IS BASED ON ARTICLE 6(1)(E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, INCLUDING PROFILING BASED ON THESE PROVISIONS. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING SERVES TO ASSERT, EXERCISE, OR DEFEND LEGAL CLAIMS (OBJECTION UNDER ARTICLE 21(1) GDPR).
IF YOUR PERSONAL DATA IS PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH ADVERTISING, INCLUDING PROFILING INSOFAR AS IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION UNDER ARTICLE 21(2) GDPR).
Right to Lodge a Complaint with the Supervisory Authority
In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work, or the place of the alleged violation. The right to lodge a complaint is without prejudice to any other administrative or judicial remedies.
Right to Data Portability
You have the right to receive the data we process based on your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a standard, machine-readable format. If you request the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.
Information, Correction, and Deletion
Within the scope of applicable legal provisions, you have the right to obtain free information about your stored personal data, its origin and recipients, and the purpose of data processing, as well as the right to correct or delete this data. For this purpose and for further questions regarding personal data, you can contact us at any time.
Right to Restrict Processing
You have the right to request the restriction of the processing of your personal data. You can contact us at any time to exercise this right. The right to restrict processing exists in the following cases:
- When you dispute the accuracy of your personal data stored with us, we usually need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data was/is unlawful, you can request the restriction of data processing instead of deletion.
- If we no longer need your personal data but you require it for the exercise, defense, or assertion of legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
- If you have objected pursuant to Article 21(1) GDPR, a balance must be struck between your interests and ours. As long as it has not been determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.
Once you have requested the restriction of processing of your personal data, these data may – aside from their storage – only be processed with your consent or for the assertion, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.
SSL/TLS Encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL/TLS encryption.
You can recognize an encrypted connection by the fact that the address line of your browser changes from „http://“ to „https://“ and by the lock symbol in your browser bar.
When SSL/TLS encryption is activated, the data you transmit to us cannot be read by third parties.