Privacy policy
1. Scope
This data protection declaration applies to the internet offer of Intothedeep and to the personal data collected via the internet pages. For Internet pages of other providers, which are referred to e.g. via links, the data protection information and declarations of those providers apply.
2. Responsible entity
Responsible for the processing of personal data are:
Abdel Nemri, Martha Nemri-Havenith
Schwanheimer Str. 45
60528 Frankfurt
Germany
The person responsible decides alone or jointly with others on the purpose and means of the processing of personal data.
2.1 Contact options with the responsible entity
The responsible body can be reached by the following means of contact:
– By mail to the above address
– By e-mail to: contact@intothedeep.info
2.2 Competent supervisory authority
Der Hessische Beauftragte für Datenschutz und Informationsfreiheit
Postfach 3163
65021 Wiesbaden
Telefon: +49 611 1408 – 0
Webseite: https://datenschutz.hessen.de/
3. Handling of personal data
Personal data is any information that relates to you as an identified or identifiable natural person. Examples of this are your name, your customer number or even the IP address of your current internet connection. We, as the controller, recognize that the data you provide is of a confidential nature. We and the employees of our company entrusted with the processing of personal data will treat your data confidentially in accordance with the legal requirements and protect it in accordance with the current state of the art. As the data controller, we continuously strive, in accordance with the principle of data avoidance and data economy, to collect as little personal data as possible, to make use of pseudonymization and anonymization wherever possible, and to continuously optimize our business processes in terms of data economy and data avoidance. For many of our business processes, the processing, storage or transfer to third parties of personal data is necessary or also required by law. As soon as we collect, store or pass on personal data as part of business processes, we will explain to you in as clear and simple a manner as possible, within the framework of the legal requirements, which data is collected from you for what purpose and for what duration, and to which third parties this data may be passed on. Furthermore, within the framework of legal requirements, we will always obtain your explicit consent in advance for any collection, storage and transfer of personal data. For some processes, such as e-mail inquiries or calling up our Internet pages, obtaining prior consent is not technically and organizationally possible. The basis of such data processing is then Art. 6 para. 1 b DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures. Please contact the responsible office or the data protection officer(s) for any open questions you may have regarding the handling of your personal data.
4. Your rights
4.1 Revocation of your consent to data processing
The revocation of already granted consent to data processing is possible at any time. For the revocation, an informal communication by e-mail to the controller or the data protection officer(s) is sufficient. The legality of the data processing already carried out remains unaffected by the revocation.
4.2 Right to information, correction, blocking and deletion
Within the framework of the legal provisions, you have the right to obtain information free of charge about all your personal data stored with us, its origin and recipient as well as the purpose of the data processing. In this context, you also have the right to correct, block and/or delete your personal data.
4.3 Right of data portability
You have the right to have your personal data handed over to you or to third parties in a machine-readable format. If you wish a direct transfer of data to another responsible person, this will be done as far as it is technically and legally feasible.
4.4 Right to restrict the processing
You have the right to request the restriction of the processing of your personal data if one of the following conditions is met:
- If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
- If the processing of your personal data has happened/is happening unlawfully, you may request the restriction of data processing instead of erasure.
- If we no longer need your personal data, but you need this data to exercise, defend or assert legal claims, you can request (instead of deletion) the restriction of the processing of your personal data.
- If you have lodged an objection in accordance with Art. 21 (1) of the GDPR, a balance must be struck between your interests and ours. As long as it has not yet been determined whose interests prevail,you have the right to request the restriction of the processing of your personal data.
If you have restricted the processing of your personal data, this data may – apart from being stored – only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the European Union or a Member State.
If you wish to exercise the right to restrict the processing of your personal data, you can contact us at any time at the address given in the imprint or our data protection officer.
4.5 Right to complain to the competent supervisory authority
In the event of a data protection violation, you have the right to lodge a complaint with the competent supervisory authority. The competent supervisory authority for data protection issues is the state data protection commissioner of the federal state in which the registered office of the controller is located, see also point 2. of this privacy policy.
5. Data collections
You do not have to provide any personal information in the public areas of our website. However, you may choose to do so by filling out forms in various areas of our website, such as contact requests or registrations. We expressly point out that data transmission on the Internet has security gaps and cannot be completely protected against access by third parties.
5.1 Retrieval of our Internet pages
Visiting our website is technically possible for everyone. Already during the visit, depending on the web server software and settings used, data is automatically stored and deposited in so-called server log files. This data may include: Browser type and version, operating system, referring and visited URL, host name and IP address, date and time of request. There is no merging of this data with other data sources. The basis for this data processing is Art. 6 para. 1 b and c DSGVO.
5.2 Contact form
Data transmitted via contact form will be stored, including your contact details, in order to be able to process your request or to be available for follow-up questions. This data will not be passed on without your consent.
The processing of the data entered in the contact form is based exclusively on your consent (Art. 6 para. 1 a DSGVO). A revocation of your already given consent is possible at any time. An informal communication by e-mail is sufficient for the revocation. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.
Data transmitted via the contact form will remain with us until you request us to delete it, revoke your consent to store it or there is no longer any need to store it. Mandatory legal provisions – in particular retention periods – remain unaffected.
5.3 IP address, date and time
In addition to the data fields visible in the respective form, the IP address as well as the date and time of the request are recorded and stored together with the specified data when the above options for entering personal data are used. The purpose of the storage is the possibility of later temporal assignment of an action (e.g. registration) to an IP address / Internet connection. The basis for this is Art. 6 para. 1 c DSGVO.
5.4 External cookies and website elements
5.5 Note on data transfer to the USA
Please note that our website may include tools from companies based in the USA. If these tools are active, your personal data may be transferred to the US servers of the respective companies. We would like to point out that the USA is not a safe third country in the sense of EU data protection law. US companies are obliged to hand over personal data to security authorities without you as a data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on these processing activities.
5.6 Google Analytics web analysis service
With your explicit consent, this website uses Google Analytics (with anonymisation function), a web analytics service provided by Google Inc (hereinafter “Google”), via our consent management system. Google Analytics uses so-called cookies (see above), which are stored on your computer and which enable an analysis of your use of the website. As a rule, the data is transferred to a Google server in the USA and stored there. We have activated IP anonymisation. On this website, your IP address will therefore be truncated beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The purpose of the Google Analytics component is to analyse the flow of visitors to our website. Google uses the data and information obtained, among other things, to evaluate the use of our website, to compile online reports for us showing the activities on our website, and to provide other services related to the use of our website. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de The operator of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
Further information and the applicable data protection provisions of Google can be found at https://www.google.de/intl/de/policies/privacy/ and at http://www.google.com/analytics/terms/de.html. Google Analytics is explained in more detail under this link https://www.google.com/intl/de_de/analytics/.
5.7 Google Maps
On our website, we use Google Maps (API) from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”) after your explicit consent via the Consent Manager. Google Maps is a web service for displaying interactive (land) maps in order to visually present geographical information. By using this service, our location is shown to you and a possible journey is made easier.
When you call up those sub-pages in which the Google Maps map is integrated, information about your use of our website (such as your IP address) is transmitted to Google servers and stored there; this may also involve transmission to the servers of Google LLC. in the USA. This occurs regardless of whether Google provides a user account via which you are logged in or whether a user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not wish to have your data associated with your Google profile, you must log out before activating the button. Google stores your data (even for users who are not logged in) as usage profiles and evaluates them. The collection, storage and evaluation are carried out in accordance with Art. 6 Para. 1 lit. f DSGVO on the basis of Google’s legitimate interest in displaying personalised advertising, market research and/or the needs-based design of Google websites. You have the right to object to the creation of these user profiles, and you must contact Google to exercise this right.
If you do not agree to the future transmission of your data to Google in the context of the use of Google Maps, you also have the option of completely deactivating the Google Maps web service by switching off the JavaScript application in your browser. Google Maps and thus also the map display on this website can then not be used.
You can view Google’s terms of use at https://www.google.de/intl/de/policies/terms/regional.html, and the additional terms of use for Google Maps at https://www.google.com/intl/de_US/help/terms_maps.html.
Detailed information on data protection in connection with the use of Google Maps can be found on the Google website (“Google Privacy Policy”): https://www.google.de/intl/de/policies/privacy/
5.8 Order data agreement with Google
We have concluded an order data processing contract with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics 4 and the Google Tag Manager.
5.9 Mailchimp
We use Mailchimp from The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE Suite 5000, Atlanta, GA 30308 USA (Mailchimp) to send our newsletter. This allows us to contact subscribers directly. In addition, we analyse your usage behaviour in order to optimise our offer.
[First name]
[Last name]
[Our email broadcasts include a link that allows you to update your personal data].
Mailchimp is a recipient of your personal data and acts as a processor for us as far as the sending of our newsletter is concerned. The processing of the data provided under this section is neither legally nor contractually required. Without your consent and the transmission of your personal data, we cannot send out a newsletter to you.
In addition, Mailchimp collects the following personal data using cookies and other tracking methods: Information about your terminal device (IP address, device information, operating system, browser ID, information about the application you use to read your emails and other information about hardware and internet connection. In addition, usage data is collected such as date and time, when you opened the email / campaign and browser activity (e.g. which emails / web pages were opened). Mailchimp needs this data to ensure the security and reliability of the systems, compliance with the terms of use and the prevention of misuse. This corresponds to the legitimate interest of Mailchimp (according to Art. 6 para. 1 lit. f DSGVO) and serves the execution of the contract (according to Art. 6 para. 1 lit. b DSGVO). Mailchimp also evaluates performance data, such as email delivery statistics and other communication data. This information is used to create usage and performance statistics for the services.
Mailchimp also collects information about you from other sources. In an unspecified period and scope, personal data is collected via social media and other third party data providers. We have no influence on this process.
You can find further information on objection and removal options vis-à-vis Mailchimp at: https://mailchimp.com/legal/privacy/#3._Privacy_for_Contacts
The legal basis for this processing is your consent in accordance with Art. 6 Para. 1 lit. a DSGVO. You can revoke your consent to the processing of your personal data at any time. A corresponding link can be found in all mailings. In addition, the revocation can be made via the specified contact options. The declaration of revocation does not affect the lawfulness of the processing carried out to date.
Your data will be processed as long as you have given your consent. Apart from that, they will be deleted after the termination of the contract between us and Mailchimp, unless legal requirements make further storage necessary.
Mailchimp has implemented compliance measures for international data transfers. These apply to all global activities where Mailchimp processes personal data of individuals in the EU. These measures are based on the EU Standard Contractual Clauses (SCCs). For more information, please visit: https://mailchimp.com/legal/data-processing-addendum/
Mailchimp also collects information about you from other sources. In an unspecified period and scope, personal data is collected via social media and other third party data providers. We have no influence on this process.
5.10 Order data agreement with Mailchimp
We have concluded an order data processing contract with Mailchimp and fully implement the strict requirements of the German data protection authorities when using Mailchimp newsletter services.
6. Documentation
In the cases of revocation, information, correction, blocking and deletion according to point 3. of this declaration, we record and store the data necessary for the possible legal classification of the process for the purpose of documentation within the framework of the legal requirements and deadlines. We will inform you separately about the scope of the collection and storage in each case as part of the processing of the transaction. This data is not merged with other data sources. The basis for data processing for documentation purposes is Art. 6 para. 1 c DSGVO.
7. Final notes
Due to updates and adaptations of legal requirements and organizational measures, this privacy policy may change from time to time. You should revisit the privacy statement occasionally to ensure that you are also in agreement with any changes.