Privacy Policy

Deutsche Version hier

1. Introduction

This website is operated by: Ullrich Schäfer.

It is very important to us to handle the data of our website visitors confidentially and to protect them in the best possible way. For this reason, we make every effort to meet the requirements of the GDPR.

In the following, we explain how we process your data on our website. To this end, we use language that is as clear and transparent as possible so that you understand what happens to your data.

2. General information

2.1 Processing of personal data and other terms

Processing of personal data and other terms Data protection applies to the processing of personal data. Personal data means all data with which you can be personally identified. This is, for example, the IP address of the device (PC, laptop, smartphone, etc.) you are currently using. Such data is processed data is processed when ‘something happens to it’. Here, for example, the IP is transmitted from the browser to our provider and automatically stored there. This is then a processing (according to Art. 4 No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).

These and other legal definitions can be found in Art. 4 GDPR.

2.2 Applicable regulations/laws - GDPR, BDSG and TTDSG

The scope of data protection is regulated by law. In this case, these are the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law.

In addition, the TTDSG supplements the provisions of the GDPR as far as the use of cookies is concerned.

2.3 The person in charge

Responsible for data processing on this website is the person responsible within the meaning of the GDPR. This is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.

You can contact those responsible under:

Ullrich Schäfer Software Development
Mehringdamm 87
10965 Berlin
Germany
legal@ullrich.is

2.4 This is how data is basically processed on this website

As we have already established, some data (e.g. IP address) is collected automatically. This data is mainly required for the technical provision of the website. If we also use personal data or collect other data, we will inform you of this or ask for your consent

You provide us with other personal data deliberately.

You will find detailed information on this below.

2.5 Your right

The GDPR provides you with comprehensive rights. These include, for example, free information about the origin, recipient and purpose of your stored personal data. You can also request the rectification, blocking or erasure of this data or lodge a complaint with the competent data protection supervisory authority. You can withdraw your consent at any time.

The details of these rights and how to exercise them can be found in the last section of this privacy policy.

2.6 Data protection - Our view

Data protection is more than just a chore for us! Personal data has great value and careful handling of this data should be a matter of course in our digitalized world. As a website visitor, you should also be able to decide for yourself what “happens” to your data, when and by whom. That is why we are committed to complying with all legal regulations, only collect the data we need and, of course, treat it confidentially.

2.7 Disclosure and deletion

The transfer and deletion of data are also important and sensitive issues. We would therefore like to briefly inform you in advance about our general approach to this.

Data is only passed on on the basis of a legal basis and only if this is unavoidable. This may be the case in particular if we are dealing with a so-called processor and an order processing contract has been concluded in accordance with Art. 28 GDPR.

We delete your data when the purpose and legal basis for processing no longer apply and the deletion does not conflict with any other legal obligations. Art. 17 GDPR also provides a ‘good’ overview of this.

For all further information, please refer to this privacy policy and contact the controller if you have any specific questions.

2.8 Hosting

This website is hosted externally. The personal data collected on this website is stored on the hoster’s servers. This includes the automatically collected and stored log files (see below for more details), as well as all other data provided by website visitors.

External hosting is carried out for the purpose of secure, fast and reliable provision of our website and in this context serves to fulfill the contract with our potential and existing customers.

The legal basis for the processing is Art. 6 para. 1 lit. a, b and f GDPR, as well as § 25 para. 1 TTDSG, insofar as consent includes the storage of cookies or access to information in the terminal device of the website visitor or user within the meaning of the TTDSG.

Our hoster only processes data that is necessary to fulfill its performance obligation and acts as our processor, i.e. it is subject to our instructions. We have concluded a corresponding contract for order processing with our hoster.

We use the following hoster:

Hetzner

Hetzner Online GmbH,
Industriestr. 25, 91710 Gunzenhausen, Deutschland.
info@hetzner.com
https://www.hetzner.com/de/rechtliches/datenschutz.

The processing of personal data always requires a legal basis. The GDPR provides for the following possibilities in Art. 6 (1) Sentence 1:

a) The data subject has given his/her consent to the processing of personal data concerning him/her for one or more specific purposes;

b) The processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the data subject’s request;

c) processing is necessary for compliance with a legal obligation to which the person in charge is subject;

d) the processing is necessary in order to protect the vital interests of the data subject or another natural person;

e) processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the person in charge was transferred;

f) processing is necessary for the purposes of safeguarding the legitimate interests of the responsible person(s) or of a/an third party necessary, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data override this, in particular where the data subject is a child.

In the following sections, we will provide you with the specific legal basis for each processing.

3. What happens on our website

When you visit our website, we process your personal data.

We use SSL or TLS encryption to protect this data in the best possible way against unauthorized access by third parties. You can recognize this encrypted connection by the https:// or lock symbol in the address bar of your browser.

Below you can find out what data is collected when you visit our website, for what purpose this is done and on what legal basis.

3.1 Data collection when calling up the website

When the website is accessed, information is automatically stored in so-called server log files. This is the following information:

– Browser type and browser version – Operating system used – referrer URL – Host name of the accessing computer – Time of the server request – IP address

This data is required temporarily in order to be able to display our website to you permanently and without problems. In particular, this data is used for the following purposes:

  • System security of the website
  • System stability of the website
  • Website troubleshooting
  • Connecting to the website
  • Website presentation

The data processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR and is based on our legitimate interest in the processing of this data, in particular the interest in the functionality of the website as well as its security.

Where possible, this data is stored in pseudonymized form and deleted once the respective purpose has been achieved.

If the server log files allow the data subject to be identified, the data is stored for a maximum period of 14 days. An exception is made if a security-relevant event occurs. In this case, the server log files are stored until the security-relevant event has been resolved and finally clarified.

For the rest, a consolidation with other data does not take place.

3.2 Cookies

3.2.1 General

This website uses so-called cookies. This is a data record, a piece of information that is stored in the browser of your end device and is stored in relation to our website.

By setting cookies, the navigation of the website in particular can be made easier for the visitor.

3.2.2 Reject cookies

You can prevent cookies from being set by adjusting your browser settings.

Here you will find the corresponding links to frequently used browsers:

If you use a different browser, we recommend that you enter the name of your browser and ‘Delete and manage cookies’ in a search engine and follow the official link to your browser.

Alternatively, you can also manage your cookie settings at www.aboutads.info/choices/ or www.youronlinechoices.com.

However, we must point out that blocking/deleting cookies completely may impair your use of the website.

3.2.3 Technically necessary cookies

We use technically necessary cookies on this website to ensure that our website functions correctly and in accordance with the applicable laws. They help to make the website user-friendly. Some functions of our website cannot be displayed without the use of cookies.

The legal basis for this is Art. 6 para. 1 lit. b, c and/or f GDPR, depending on the individual case.

3.2.4 Technically unnecessary cookies

In addition, we also use cookies on our website that are not technically necessary. These cookies are used, among other things, to analyze the surfing behavior of the website visitor or to offer website functions that are, however, not technically necessary.

The legal basis for this isYours Consent pursuant to Art. 6 para. 1 lit. a GDPR.

Technically unnecessary cookies are only stored with your consent set, which you can revoke at any time in the cookie consent tool.

3.3 Data processing through user input

3.3.1 Contact

a) E-mail

If you contact us by e-mail, we process your e-mail address and any other data contained in the e-mail. This data is stored on the mail server and in some cases on the respective end devices. Depending on the request, the legal basis for this is regularly Art. 6 para. 1 lit. f GDPR or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with the legal requirements.

3.4 Analysis and tracking tools

3.4.1 Plausible.io

We integrate the functions of plausible.io on our website. This is a service of Plausible Insights OÜ, Västriku tn 2, 50403, Tartu, Estonia.

Plausible is an open source analysis tool. All measurements on the website are carried out completely anonymously. No cookies are used and no personal data is collected. There are no permanent identifiers. Also no cross-page or cross-device tracking. The website data is not used for any other purpose. All visitor data is processed exclusively with servers owned and operated by Ullrich Schäfer and never leaves the EU.

The legal basis for the processing is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in the analysis to ensure the technical stability and maximum performance of our website.

More information: https://plausible.io/data-policy.

4.This is also important

Finally, we would like to inform you in detail about your rights and how you will be informed about changes to data protection requirements.

4.1 Yours Rights in detail

4.1.1 Right to information according to Art. 15 GDPR

You have the right to request information about whether personal data concerning you is being processed. If so, you can request further information about the nature and manner of the processing. A detailed list can be found in Art. 15(1) lit. a to h of the GDPR.

4.1.2 Right to rectification according to Art. 16 GDPR

This right includes the correction of inaccurate data and the completion of incomplete personal data.

4.1.3 Right to erasure according to Art. 17 GDPR

This so-called ‘right to be forgotten’ grants you the right, under certain conditions, to request the erasure of personal data by the data controller. This is generally the case when the purpose of data processing is no longer applicable, when consent has been revoked, or when the initial processing occurred without a legal basis. A detailed list of reasons can be found in Art. 17(1) lit. a to f of the GDPR. This ‘right to be forgotten’ also corresponds to the responsibility of the data controller under Art. 17(2) GDPR to take appropriate measures to achieve the general erasure of data.

4.1.4 Right to restriction of processing according to Art. 18 GDPR

This right is subject to the conditions specified in Art. 18(1) lit. a to d.

4.1.5 Right to data portability according to Art. 20 GDPR

This establishes the fundamental right to receive one’s own data in a commonly used format and to transmit it to another controller. However, this only applies to data processed based on consent or contract under Art. 20(1) lit. a and b, and to the extent that it is technically feasible.

4.1.6 Right to object according to Art. 21 GDPR

You can generally object to the processing of your personal data. This is especially applicable when your objection outweighs the legitimate interest of the data controller in processing, and when the processing relates to direct marketing and/or profiling.

4.1.7 Right to “individual decision-making” according to Art. 22 GDPR

You generally have the right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects or significantly affects you in a similar manner. However, this right is subject to limitations and additions outlined in Art. 22(2) and 4 of the GDPR.

4.1.8 Additional Rights

The GDPR includes comprehensive rights to inform third parties about whether or how you have asserted rights under Art. 16, 17, 18 GDPR. However, this is only to the extent that it is possible and feasible with reasonable effort.

At this point, we would like to remind you again of your right to revoke consent granted under Art. 7(3) GDPR. However, the legality of processing carried out until that point is not affected by this revocation.

Furthermore, we would like to draw your attention to your rights under §§ 32 et seq. BDSG, which are largely identical in content to the rights described just now.

4.1.9 Right to lodge a complaint according to Art. 77 GDPR

You also have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of personal data concerning you violates this regulation.

5. What if tomorrow the GDPR is abolished or other changes take place?

The current status of this Privacy Policy is April 1st, 2024. From time to time it is necessary to adapt the content of the Privacy Policy in order to respond to factual and legal changes. We therefore reserve the right to amend this Privacy Policy at any time. We will publish the amended version in the same place and recommend you to read the Privacy Policy regularly.