Data Protection Policy

This Data Protection Policy informs you about the nature, scope, and purpose of the processing of personal data (hereinafter referred to as “data”) within our online offering and the websites, functions, and content associated with it, as well as external online presences, such as our social media profiles. Regarding the terminology used, such as “processing” or “controller,” we refer to the definitions in Article 4 of the General Data Protection Regulation (GDPR).

Controller

Tobias Lieshoff
Email: me@tobias-lieshoff.de [PGP Key]

Types of Processed Data:

• Inventory data (e.g., names, addresses).
• Contact data (e.g., email, phone numbers).
• Content data (e.g., text input, photographs, videos).
• Usage data (e.g., visited websites, interest in content, access times).
• Meta/communication data (e.g., device information, IP addresses).

Categories of Data Subjects

Visitors and users of the online offer (Hereinafter, we refer to the affected persons collectively as “users”).

Purpose of Processing

• Provision of the online offer, its functions, and content.
• Responding to contact requests and communicating with users.
• Security measures.
• Audience measurement/marketing.

Legal Basis

In accordance with Article 13 GDPR, we inform you of the legal basis of our data processing. If the legal basis is not mentioned in the Data Protection Policy, the following applies: The legal basis for obtaining consents is Article 6(1)(a) and Article 7 GDPR, the legal basis for processing for the performance of our services and implementation of contractual measures as well as answering inquiries is Article 6(1)(b) GDPR, the legal basis for processing to fulfill our legal obligations is Article 6(1)© GDPR, and the legal basis for processing to protect our legitimate interests is Article 6(1)(f) GDPR. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) GDPR serves as the legal basis.

Cooperation with Processors and Third Parties

If, in the course of our processing, we disclose data to other persons and companies (processors or third parties), transmit them to them or otherwise grant them access to the data, this is done only on the basis of legal permission (e.g., if a transfer of data to third parties, such as to payment service providers, is required for contract performance according to Article 6(1)(b) GDPR), if you have consented, if a legal obligation provides for this, or on the basis of our legitimate interests (e.g., when using agents, web hosts, etc.).

Rights of Data Subjects

You have the right to request confirmation as to whether the data in question is being processed and to information about this data as well as further information and a copy of the data in accordance with Article 15 GDPR.

You have the right under Article 16 GDPR to demand the completion of data concerning you or the correction of incorrect data concerning you.

Contact

When contacting us (e.g., via contact form, email, telephone, or social media), the user’s details are processed for handling the contact request and its processing according to Article 6(1)(b) GDPR. The user’s details may be stored in a Customer-Relationship-Management System (“CRM System”) or comparable request organization.

Online Presences in Social Media

We maintain online presences within social networks and platforms in order to communicate with customers, prospects, and users active there and to inform them about our services. When calling up the respective networks and platforms, the terms and conditions and the data processing guidelines of their respective operators apply.