top of page

Data protection

Thank you for visiting my website. The protection of your privacy and the personal data you provide to me is very important to me. That is why I have always complied with the applicable legal provisions when using your personal data in the past, and of course I also comply with the General Data Protection Regulation (GDPR), which has been in force since 25.5.2018.

 

As a user of the website, I hereby inform you which of your personal data according to Art. 4 No. 1 GDPR, such as name, address, telephone number and e-mail address, I process for what purpose and when they are deleted or blocked.

 

You can use my website without providing your personal data. However, if you contact me via the Internet, this is not possible without processing your personal data.

 

SSL encryption is used to protect your data, but I would like to point out that communication on the Internet can have security gaps. In particular, sending unencrypted e-mails is not secure and correspondence is not protected from third-party access.

 

External services for hosting, IT security, content delivery networks (CDN) and e-mail are used to provide the website. You can find more details under “Data transfer to third parties” and “Transfer to third countries”. The service provider “Wix.com Ltd.” uses, among other things, technologies for tracking and automated decision-making. You can find more information on this in the privacy policy of Wix.com Ltd.

 

1. Name and Contact details of the responsible person for the processing

The responsible person within the meaning of the GDPR is:

 

Elvira Friedrich

Babendiekstraße 66a

D-22549 Hamburg

Tel. 0049 - (0) 40 280 65 89

E-Mail: mail@elvira-friedrich.de

 

2. Provision of the website / access data

Each time you visit the website, my server (or the hosting provider) automatically collects data from the computer you are using, which is stored as log files. This involves the following data: IP address, date and time of access, browser type, operating system, Internet service provider (ISP) and the websites from which you accessed my site and which you access from my site.

 

a) Purpose of the processing

 

The data is collected as server log files for security reasons. In this way, unauthorized, harmful access to my website is logged. By collecting the data or storing it as log files, the functionality of the website is ensured. I do not use the data collected to draw conclusions about your person. The data is not analyzed for marketing purposes.

The legitimate interest in data processing lies in the aforementioned purposes.

The legal basis for this is Art. 6 para. 1 lit. f GDPR.

 

b) Duration of data storage

 

The data used to provide the website will be deleted at the end of the respective session. If the data is stored, it will be deleted as soon as the purpose for which it was stored no longer applies. This is generally the case after 14 days at the latest.

 

The collection of data for the provision of the website and the storage of the data as log files is absolutely necessary for the security and operation of the website. You therefore have no right to object.

 

3. Collection and processing of personal data

If you contact me (e-mail / contact form), your personal data will be collected by me. I will, of course, use the data you provide in this way exclusively for the purpose for which you have made it available to me.

 

When you send your message to me, your IP address and the date and time of the message will also be saved.

 

Your personal data will only be processed in order to answer your inquiries. I therefore collect your data to fulfill a contract between you and me or to carry out pre-contractual measures. In addition, I process your data if your consent has been obtained for processing operations. Another reason for processing may be the fulfillment of a legal obligation.

The legal basis for the processing of your above-mentioned personal data is Art. 6 para. 1 lit. a-c GDPR.

 

a) Duration of data storage

 

The data that I have received in the course of contacting you will be deleted as soon as it is no longer required for the purpose for which it was collected because your request has either been dealt with or a contract has not been concluded. In the event of a validly concluded contract, your data will be stored in accordance with the relevant legal provisions (e.g. retention periods) for the legally prescribed period.

 

b) Possibility of objection

 

You can exercise your right to withdraw your consent to data processing, object to data processing and delete your personal data at any time. In this case, the conversation can no longer be continued as normal. You can find more information on this in the section “Your rights”.

 

4. Cookies

The website partly uses cookies. Cookies are small text files that are stored on your computer when you access the website and enable your browser to be reassigned. This makes the use of my website easier, more effective and safer for you.

 

The cookies are used for the proper operation of the website and to provide basic functionalities. This constitutes the legitimate interest in data processing.

The legal basis for the use of cookies is Art. 6 para. 1 lit. f GDPR.

 

The purpose of using technically necessary cookies is to simplify the use of websites for you as a user. Some functions of the website cannot be offered without the use of cookies. For these, it is necessary for the browser to be recognized even after a page change. This is also the legitimate interest in the processing of personal data in accordance with Art. 6 para. 1 lit. f GDPR.

 

5. Possibilities for objection and removal

You can delete cookies already stored on your computer at any time. If you wish to prevent the use of cookies, you can refuse to accept cookies in your browser.

If you decide to deactivate cookies, the functionality of my website may only be available to you to a limited extent.

 

6.Disclosure of data to third parties

Your personal data will not be passed on, in particular not for marketing purposes, unless you have given your express consent (Art. 6 para. 1 lit. a GDPR). In addition, data may be passed on if this is necessary for the fulfillment of the contract (Art. 6 para. 1 lit. b GDPR), if it complies with a legal obligation (Art. 6 para. 1 lit. c GDPR) and/or if it is covered by my legitimate interests (Art. 6 para. 1 lit. f GDPR).

 

Insofar as your personal data is passed on to service providers, I take legal, technical and organizational measures and carry out checks to ensure that the data is only used in accordance with the order and that the provisions of the relevant data protection regulations (Art. 28 para. 3 sentence 1 GDPR) are complied with.

 

When using services for e.g. hosting to provide the website, my legitimate interest in processing and passing on the data lies in the economic operation of the website.

 

7. Transfer to third countries

If personal data is transferred to a third country outside the EU, this is done on the basis of my legitimate interests and in compliance with the provisions of Art. 44 ff GDPR. The transfer to the USA, for example, takes place on the basis of the EU-US Privacy Shield officially recognized by the EU. You can find details at https:// www.privacyshield.gov.

 

The transfer of personal data to Israel is based on the decision of the European Commission that Israel provides an adequate level of protection for personal data of EU citizens. Details can be found at Commission Decision ... on the adequacy of the level of data protection in the State of Israel (2011/61/EU).

​

8. Integration of third-party services

Content or services provided by service providers, such as fonts, are used on the website. These third-party providers need to know your IP address in order to be able to transmit their services to your browser.

 

The legal basis for the transmission of your IP address to third-party providers is Art. 6 para. 1 lit. f GDPR, as I have a legitimate interest in the optimization of my website and its economic operation.

The following third-party providers are used:

 

Google Fonts

The fonts (“Google Fonts”) of the provider Google LLC are used for the website.
The data collected by Google may be processed in the USA.

​

9. Data security

My website uses the widespread SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser.
In addition, suitable technical and organizational security measures are used to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. The security measures are continuously improved in line with technological developments.

 

10. Your rights

I will be happy to provide you with information about whether and which of your personal data is processed and for what purpose (Art. 15 GDPR). In addition, if the legal requirements are met, you have the right to rectification (Art. 16 GDPR) and erasure (Art. 17 GDPR) of your data, the right to restriction of processing (Art. 18 GDPR) and the right to data portability (Art. 20 GDPR). You can also revoke your consent to the processing of your personal data at any time (Art. 7 para. 3 GDPR).

 

In addition, you have the option of lodging a complaint with the supervisory authority responsible for you if you believe that the processing of your personal data violates data protection regulations (Art. 77 GDPR).

 

If your personal data is processed on the basis of my legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR, you have the right to object in accordance with Art. 21 GDPR.

If you would like to exercise one of your aforementioned rights, simply send an email to mail@elvira-friedrich.de.

​

11. Links to websites of other providers

If my website contains links to websites of other companies, this data protection declaration does not extend to them.

I reserve the right to change the privacy policy with regard to applicable data protection regulations.

​

Status: October 2024

bottom of page