The party responsible within the meaning of the General Data Protection Regulation Art. 4 No. 7 GDPR and other national data protection laws of the member states as well as other data protection regulations is a private person:
Gàbor Tom Steisinger
Schützenstr. 76
13127 Berlin
gabor.steisinger@gmail.com
1. External Hosting
This website is hosted by an external service provider. The personal data collected on this website is stored on the host's servers. This can be IP addresses, website access, meta data and other data that is generated via a website.
The hosting provider is used in the interest of a secure, fast and efficient provision of my online offer by a professional provider (Art. 6 Para. 1 lit. f DSGVO).
In order to ensure data protection-compliant processing, I have concluded an order processing contract with the hosting provider. The provider will only process your data to the extent that is necessary to fulfil its performance obligations and will follow my instructions in relation to this data.
2. Provision of the Website: Processing of Access Data
In principle, the hosting provider only processes personal user data insofar as this is necessary to provide a functional website and the content and services. You can therefore visit the website without providing any information about yourself. Only the following access data is stored in so-called server log files:
• Referrer (previously visited website)
• Requested web page or file
• Browser type and browser version
• Operating system used
• Device type used
• Time of access
• IP address in anonymized form
Purpose of Data Processing
• Ensuring trouble-free operation
• Ensuring a smooth connection to the website,
• Ensuring comfortable use of the website,
• Defense against attacks on the website and the IT system and
• Evaluation of system security and stability.
Legal Basis and Recipient of the Data
The legal basis for data processing is Art. 6 Para. 1 S. 1 lit. f GDPR. The legitimate interest results from the data collection purposes listed above. In no case do I use the collected data for the purpose of drawing conclusions about you personally.
The data stored in the server logs is saved by the provider and may be checked by technical service providers who act as processors for the operation and maintenance of the site. They will not be transmitted to third parties.
Storage Period
After 7 days at the latest, the logs will be anonymized. Storage of usage data beyond this period is possible. In this case, the users' IP addresses are deleted or altered so that it is no longer possible to assign the calling client.
Objection and Removal
The collection of data to provide the website and the storage of the data in log files is absolutely necessary for the operation of the website. You have the right to object to processing. Whether the objection is successful must be determined by weighing up interests.
3. Plugins and Embedded Functions / Content
I integrate functional elements into the online offer that are obtained from the servers of their respective providers (hereinafter referred to as "third-party providers"). These are fonts, style sheets and scripts (hereinafter uniformly referred to as "content").
The integration always presupposes that the third-party providers of this content process the IP address of the user, since without the IP address they would not be able to send the content to the user's browser. The IP address is therefore required for the display of this content or functions.
• Types of data processed: Usage data (e.g. websites visited, access times), meta data (e.g. device information, IP addresses),
• Affected persons: Users (e.g. website visitors, users of online services).
• Purposes of processing: Provision of the online offer and user-friendliness, service.
• Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR).
Services and service providers used:
• Cm4all: Fonts & CMS. Provider: CM4all GmbH, Im Mediapark 6a, 50670 Köln, Germany. Privacy Policy: https://www.cm4all.com/datenschutz.
• Strato-editor: CMS. Provider: STRATO AG, Otto-Ostrowski-Straße 7, 10249 Berlin, Germany. Privacy Policy: https://www.strato.de/datenschutz/.
4. Cookies
This website uses so-called cookies. Cookies are data packages that are stored on your device and saved by your browser. They do not cause any damage to your device and do not contain any viruses. Cookies serve to make the website more user-friendly.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of the website may be restricted. The following overview shows the cookies used and their purposes:
Name: vid
Host: strato-editor.com
Duration: 1 week
Purpose: visitor count
Type: functional
Name: beng_proxy_session
Host: steisinger.website
Duration: session
Purpose: session control
Type: functional
Legal Basis for Data Processing
The legal basis for the processing of personal data using functional cookies is Art. 6 Para. 1 let. f GDPR and Sect. 25 Para. 2 TTPDA (TTDSG).
Purpose of Data Processing
The purpose of using technically necessary cookies is the provision of the website.
Duration of Storage, Possibility of Objection and Removal
Cookies are stored on the user's device and transmitted to my site. Therefore, as a user, you also have full control over the use of cookies. By changing the settings in your Internet browser, you can deactivate or restrict the transmission of cookies. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for my website, it may no longer be possible to use all the functions of the website to their full extent.
Configuration of Browser Settings
Most browsers are pre-set to accept cookies by default. However, you can configure your browser in such a way that it only accepts certain cookies or no cookies at all. You can also delete cookies already stored in your browser via your browser settings. It is also possible to set your browser so that it notifies you before cookies are saved. Since the various browsers can differ in their respective functions, I ask you to use the respective help menu of your browser for the configuration options.
If you would like a comprehensive overview of all third-party access to your Internet browser, I recommend installing specially developed plug-ins for this purpose.
5. Statistical Recording
The website uses statistics provided by my host Strato (Provider: STRATO AG, Otto-Ostrowski-Straße 7, 10249 Berlin). This creates statistical records of how the website is used. Information accessible to me is:
• Requested web page or file
• Date & time of access
This data is stored on the web server and is not made accessible to third parties.
Legal Basis, Purpose and Objection
The legal basis is my legitimate interest in the statistical evaluation of website usage in accordance with Art. 6 Para. 1 S. 1 f of the GDPR. This allows me to eliminate problems and improve the website. Since no data is collected that can be used to identify individuals, there is no possibility of objection.
6. SSL Encryption
This site uses SSL encryption for security reasons and to protect the transmission of confidential content. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http: //" to "https: //" and by the lock symbol in your browser line.
If SSL encryption is activated, the data you transmit to me cannot be read by third parties.
I process the personal data that you voluntarily provide when you contact me by e-mail.
Legal Basis
These data are only processed for the correspondence with you and for the purpose for which you have given me the data in the context of this communication, e.g. to process your request or to contact you at your request. In this case, the processing of personal data takes place with your consent and on the basis of Art. 6 Para. 1 a GDPR. In this context, the data will not be passed on to third parties.
If the aim of the electronic contact is to conclude a contract, the additional legal basis for processing is Art. 6 Para. 1 lit. b GDPR.
Type and Purpose of Data Processing
The processing of personal data serves me to process the establishment of contact.
Data Deletion and Storage Duration
The personal data will be deleted or blocked when the purpose of storage no longer applies. Storage can be prolonged if this is required by the European or national law regulations, laws or other provisions to which the person responsible is subject. The data will be blocked or deleted if a storage period expires, unless there is a need for further storage of the data in order to conclude or fulfill a contract.
Opposition and Removal Option
The user has the option to revoke their consent to the processing of personal data at any time. If a user contacts me by email, they can object to the storage of their personal data for further usage. In such a case, the conversation cannot be continued. To do this, send an informal e-mail to gabor.steisinger@gmail.com.
If your personal data is processed, you are affected within the meaning of the GDPR and you have the following rights vis-à-vis the person responsible:
1. Right to Information
You can request confirmation from the person responsible as to whether personal data relating to you is being processed.
If this is the case, you can request the following information from the person responsible:
(1) the purposes for which the personal data are processed;
(2) the categories of personal data that are processed;
(3) the recipients or the categories of recipients to whom the personal data relating to you have been disclosed or are still being disclosed;
(4) the planned duration of the storage of your personal data or, if specific information is not available, criteria for determining the storage duration;
(5) the existence of a right to correction or deletion of personal data concerning you, a right to restriction of processing by the party responsible or a right to object to this processing;
(6) the right to lodge a complaint with a supervisory authority;
(7) all available information on the origin of the data if the personal data are not collected from the data subject;
(8) The existence of automated decision-making including profiling in accordance with Art. 22 Paragraphs 1 and 4 GDPR and - at least in these cases - meaningful information about the logic involved and the scope and intended effects of such processing for the person concerned.
2. Right to Rectification
You have a right to correction and / or completion versus the person responsible if the processed personal data concerning you is incorrect or incomplete. The person responsible must make the correction immediately.
3. Right to Restriction of Processing
You can request the restriction of the processing of your personal data under the following conditions:
(1) if you dispute the correctness of the personal data concerning you for a period of time that enables the person responsible to check the correctness of the personal data;
(2) the processing is unlawful and you refuse to delete the personal data and instead request the restriction of the use of the personal data;
(3) the person responsible no longer needs the personal data for the purposes of processing, but you need them to assert, exercise or defend legal claims, or
(4) if you have objected to the processing in accordance with Art. 21 Paragraph 1 GDPR and it has not yet been determined whether the legitimate reasons of the person responsible outweigh your reasons.
If the processing of your personal data has been restricted, this data - apart from its storage - may only be used with your consent or for the establishment, exercise or defense of legal claims or to protect the rights of another natural or legal person or for reasons of important public interest processed by the Union or a Member State.
4. Right to Deletion
a ) Deletion Obligation
You can demand that the person responsible delete the personal data concerning you immediately, and the person responsible is obliged to delete this data immediately if one of the following reasons applies:
(1) The personal data concerning you are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) You revoke your consent on which the processing was based in accordance with Article 6 (1) (a) or Article 9 (2) (a) GDPR, and there is no other legal basis for processing.
(3) You object to the processing in accordance with Art. 21 Paragraph 1 GDPR and there are no overriding legitimate reasons for the processing, or you object to the processing in accordance with Art. 21 Paragraph 2 GDPR.
(4) The personal data concerning you have been processed unlawfully.
(5) The deletion of your personal data is necessary to fulfill a legal obligation under Union law or the law of the member states to which the person responsible is subject.
b ) Exceptions
The right to deletion does not exist if processing is necessary
(1) to exercise the right to freedom of expression and information;
(2) to fulfill a legal obligation that requires processing under the law of the Union or of the member states to which the person responsible is subject, or to perform a task that is in the public interest or in the exercise of official authority that is transferred to the person responsible has been;
(3) for reasons of public interest in the area of public health in accordance with Art. 9 Paragraph 2 lit. h and i and Art. 9 Paragraph 3 GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes or for statistical purposes in accordance with Art. 89 Para. 1 GDPR, insofar as the right mentioned under section a) is likely to make the realization of the objectives of this processing impossible or seriously impair it;
(5) for the establishment, exercise or defense of legal claims.
5. Right to Information
If you have asserted the right to correction, deletion or restriction of processing against the person responsible, the person responsible is obliged to comply with and to notify the recipients to whom the personal data concerning you have been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or involves a disproportionate effort.
You have the right to be informed about these recipients by the person responsible.
6. Right to Data Portability
You have the right to receive the personal data concerning you, which you have provided to the person responsible, in a structured, common and machine-readable format. You also have the right to transfer this data to another person responsible without hindrance from the person responsible to whom the personal data was provided, provided
(1) the processing is based on consent in accordance with Art. 6 Paragraph 1 lit. a GDPR or Art. 9 Paragraph 2 lit. a GDPR or on a contract in accordance with Art. 6 Paragraph 1 lit. b GDPR and
(2) the processing is carried out using automated procedures.
In exercising this right, you also have the right to have your personal data transmitted directly from one person in charge to another person in charge, insofar as this is technically feasible. This must not impair the freedoms and rights of other people.
The right to data portability does not apply to the processing of personal data that is necessary for the performance of a task that is in the public interest or takes place in the exercise of official authority that has been transferred to the person responsible.
7. Right to Revoke the Data Protection Declaration of Consent
You have the right to withdraw your declaration of consent under data protection law at any time. Revoking your consent does not affect the legality of the processing carried out on the basis of your consent up to the point of revocation.
8. Automated Decision in Individual Cases Including Profiling
I do not use automated decision-making, including profiling
9. Right to Complain to a Supervisory Authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority (https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html), in particular in the member state of your place of residence, your place of work or the place of the alleged violation, if you are of the opinion that the processing of your personal data is against violates the GDPR.
The supervisory authority to which the complaint was submitted informs the complainant of the status and the results of the complaint, including the possibility of a judicial remedy according to Art. 78 GDPR.
10. Right of Objection
You have the right, for reasons that arise from your particular situation, to object at any time to the processing of your personal data, which is based on Article 6 (1) (e) or (f) GDPR; this also applies to profiling based on these provisions.
The person responsible will no longer process the personal data concerning you unless he can prove compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If the personal data concerning you are processed in order to operate direct mail, you have the right to object at any time to the processing of the personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is connected to such direct advertising.
If you object to processing for direct marketing purposes, the personal data relating to you will no longer be processed for these purposes.
I maintain online presences within social networks in order to communicate with the users active there or to offer information about me. There are links on my website that lead to my profiles. As long as users stay on the website, no connection to the respective network is established. The links enable users to communicate with me within these networks.
The data of users within social networks are usually processed for market research and advertising purposes and used accordingly. For example, usage profiles can be created based on user behavior and the interests of the user. The usage profiles can in turn be used, for example, to place advertisements inside and outside the networks that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users' device in which the usage behavior and interests of the users are saved. Furthermore, data can be saved in the usage profiles regardless of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).
For a detailed and comprehensive presentation of the respective forms of processing and the possibilities of objection (opt-out), I refer to the data protection declarations and information provided by the operators of the respective networks for these networks. In principle, you have the option to object to the use of your data on these platforms.
But also in the case of requests for information and the assertion of other so-called data subject rights (if your data has been collected or stored or processed or passed on), I point out that these are most effectively asserted with the respective providers. Because only the providers have access to the data of the users and can take appropriate measures and provide information. You can also assert these rights against these companies based on the GDPR, for example in Germany as well as in other European countries.
• Processed data types: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text entries, photographs, videos), usage data (e.g. websites visited, interest in content, access times), meta / communication data (e.g. Device information, IP addresses).
• Affected persons: all users (e.g. social media visitors, users of online services) whose data has been collected, saved, processed or passed on
• Purposes of processing: contact inquiries and communication, tracking (e.g. interest / behavior-related profiling, use of cookies), remarketing, range measurement (e.g. access statistics, recognition of returning visitors).
• Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR), consent (Art. 6 Par. 1 S. 1 lit. a. GDPR) if you have a profile with the provider.
Services and service providers with whom I maintain profiles:
• LinkedIn: Provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; Website: https://www.linkedin.com; Data protection declaration: https://www.linkedin.com/legal/privacy-policy; Refuse option (opt-out): https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.