1. Introduction This Privacy Policy outlines how we process personal data when you use our website and our social media profiles. Personal data refers to any information that relates to an identified or identifiable individual, such as name or IP address.
1.1. Contact Information The responsible entity under Article 4(7) of the EU General Data Protection Regulation (GDPR) is:
[Company Name]
[Company Address]
Email: [Company Email]
1.2. Scope of Data Processing, Purpose, and Legal Basis We process personal data based on the following legal grounds:
- Article 6(1)(a) GDPR: When users provide consent for specific processing activities.
- Article 6(1)(b) GDPR: When data processing is necessary to fulfill a contractual obligation, including pre-contractual inquiries.
- Article 6(1)(c) GDPR: When processing is required to comply with legal obligations, such as tax regulations.
- Article 6(1)(f) GDPR: When processing is based on our legitimate interests, such as website functionality and security.
1.3. Data Processing Outside the EEA When transferring data to third-party service providers outside the European Economic Area (EEA), we ensure data security through:
- EU Commission adequacy decisions (e.g., UK, Canada, Israel).
- Standard contractual clauses in the absence of adequacy decisions.
- Additional security guarantees such as encryption and monitoring of access requests by authorities.
1.4. Data Retention Unless explicitly stated otherwise, we store personal data only as long as necessary for the intended purpose and legal obligations. After this period, data will be deleted or restricted from further processing.
1.5. Rights of Data Subjects Under GDPR, users have the following rights regarding their personal data:
- Right to access, rectify, or erase data.
- Right to restrict or object to processing.
- Right to data portability.
- Right to withdraw consent at any time.
- Right to lodge a complaint with a data protection authority.
Contact details for data protection authorities can be found at:
https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html
1.6. Data Provision Obligations Users are only required to provide personal data that is necessary for a contractual relationship or legal requirements. Failure to provide such data may result in an inability to enter into or fulfill a contract.
1.7. No Automated Decision-Making We do not use fully automated decision-making processes in our business relationships. If this changes, we will inform affected users separately.
1.8. Contacting Us If users contact us via email or phone, we process the provided data to respond to inquiries. The legal basis for this processing is our legitimate interest (Article 6(1)(f) GDPR). Data will be deleted once the inquiry is resolved unless legal obligations require further storage.
1.9. Customer Surveys We conduct customer surveys to better understand user preferences. Data collected is processed based on our legitimate interest (Article 6(1)(f) GDPR) and deleted after survey evaluation.
2. Newsletters Users who have previously engaged with our services may receive newsletters unless they opt out. The legal basis for this processing is our legitimate interest in direct marketing (Article 6(1)(f) GDPR). Users can unsubscribe at any time via the link in emails or by contacting us.
We use Mailchimp and Salesforce for newsletter distribution. Their privacy policies can be found at:
3. Website Data Processing
3.1. Website Hosting and Security Our website is hosted by [Hosting Provider]. Personal data is processed to ensure website functionality and security (Article 6(1)(f) GDPR).
3.2. Cookies We use cookies for website functionality and user experience improvement. Essential cookies are processed under legitimate interest (Article 6(1)(f) GDPR), while all others require user consent (Article 6(1)(a) GDPR).
3.3. Contact Forms When users submit inquiries via contact forms, we process their data to respond effectively (Article 6(1)(f) GDPR). Data is deleted when no longer necessary.
3.4. Analytics and Tracking We use tools like Google Analytics and Facebook Pixel for website analytics and advertising. Data processing is based on user consent (Article 6(1)(a) GDPR). Users can withdraw consent via cookie settings.
3.5. Third-Party Services We integrate services such as:
- Trustpilot for reviews (Privacy Policy)
- Calendly for appointment scheduling (Privacy Policy)
- Zapier for automation (Privacy Policy)
4. Social Media Data Processing We operate profiles on platforms like Facebook, Instagram, and LinkedIn. These platforms may process user data independently. For details, refer to their privacy policies:
5. Changes to This Privacy Policy We reserve the right to modify this policy. The latest version is available on our website.
6. Contact and Questions For any privacy-related questions, please contact us via the email provided above.