Privacy policy.
1. Overview of Data Protection
General Information
The following notices provide a simple overview of what happens to your personal data when you visit this website. Personal data is any information that can be used to identify you personally. For detailed information on the topic of privacy, please refer to our privacy policy below this text.
Data Collection on this Website
Who is responsible for the data collection on this website?
The data processing on this website is carried out by the website operator. You can find the contact details of the website operator in the section "Responsible Party" of this privacy policy.
How do we collect your data?
Your data is collected in part by you providing it to us. For example, this may include data that you enter into a contact form.
Other data is collected automatically or with your consent when visiting the website through our IT systems. This mainly includes technical data (e.g., Internet browser, operating system, or time of page access). The collection of this data happens automatically as soon as you access this website.
What do we use your data for?
Some of the data is collected to ensure the website functions properly. Other data may be used to analyze your user behavior. If contracts can be concluded or initiated through the website, the data you provide will also be processed for contract offers, orders, or other inquiries.
What rights do you have regarding your data?
You have the right to obtain, at any time and free of charge, information about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you may revoke this consent at any time for the future. Furthermore, you have the right to request the restriction of the processing of your personal data under certain circumstances.
Additionally, you have the right to file a complaint with the competent supervisory authority.
You may contact us at any time regarding these issues or for further questions about privacy.
Analysis Tools and Third-Party Tools
When visiting this website, your surfing behavior may be statistically analyzed. This is mainly done using so-called analysis programs.
Detailed information about these analysis programs can be found in the following privacy policy.
Squarespace Analytics
This website uses Squarespace Analytics, an integrated analysis tool provided by Squarespace Ireland Ltd., Le Pole House, Ship Street Great, Dublin 8, Ireland. Squarespace Analytics collects information about user behavior on the website, such as the number of page views, visit duration, and interactions. The data is anonymized and used to help us optimize the website and user experience.
Data processing is based on Art. 6 (1) lit. f DSGVO, as we have a legitimate interest in analyzing user behavior and optimizing our web offerings. Further information can be found in Squarespace's privacy policy at https://www.squarespace.com/privacy.
2. Hosting
We host the content of our website with the following provider: Squarespace
The provider is Squarespace Ireland Ltd., Le Pole House, Ship Street Great, Dublin 8, Ireland (hereinafter referred to as Squarespace).
Squarespace is a tool for creating and hosting websites. When you visit our website, your data is processed on Squarespace's servers. Personal data may also be transmitted to Squarespace's parent company, Squarespace Inc., 8 Clarkson St, New York, NY 10014, USA. Furthermore, Squarespace stores cookies required for the presentation of the page and ensuring security (necessary cookies).
The use of Squarespace is based on Art. 6 (1) lit. f DSGVO. We have a legitimate interest in providing our website as reliably as possible. If consent has been requested, the processing will only be carried out based on Art. 6 (1) lit. a DSGVO and § 25 (1) TDDDG, as long as consent includes the storage of cookies or access to information on the user's device (e.g., device fingerprinting) under the TDDDG. The consent can be revoked at any time.
Data transmission to the USA is based on the EU Commission's standard contractual clauses.
For details, please visit: https://support.squarespace.com/hc/de/articles/360000851908-DSGVO-und-Squarespace.
The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA, which ensures compliance with European data protection standards for data processing in the USA. Every company certified under the DPF commits to adhering to these standards.
Further information can be obtained from the provider here:
https://www.dataprivacyframework.gov/participant/4774.
Data Processing Agreement (DPA)
We have entered into a Data Processing Agreement (DPA) for the use of the service mentioned above. This legally required contract ensures that personal data of our website visitors is processed only according to our instructions and in compliance with the DSGVO.
3. General Notes and Mandatory Information
Data Protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations as well as this privacy policy.
When you use this website, various personal data will be collected. Personal data is data that can be used to identify you personally. This privacy policy explains what data we collect and how we use it. It also explains how and for what purpose this occurs.
Please note that data transmission over the internet (e.g., communication via email) can have security vulnerabilities. A completely secure transmission of data against access by third parties is not possible.
Responsible Party
The responsible party for data processing on this website is:
Natalia Khromova
Heerdter Lohweg 228
40549 Düsseldorf
Germany
Phone: +49 173 9017271
Email: nataliakhromova@live.com
The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Retention Period
Unless a more specific retention period is stated in this privacy policy, your personal data will remain with us until the purpose for processing the data no longer applies. If you make a valid request for deletion or revoke consent for data processing, your data will be deleted, unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in this case, deletion will occur once these reasons no longer apply.
General Notes on the Legal Basis for Data Processing on This Website
If you have given consent to data processing, we process your personal data based on Art. 6 (1) lit. a DSGVO or Art. 9 (2) lit. a DSGVO, if special categories of data are processed under Art. 9 (1) DSGVO. In the case of explicit consent for the transfer of personal data to third countries, data processing is also carried out based on Art. 49 (1) lit. a DSGVO. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), data processing also occurs based on § 25 (1) TDDDG. Consent can be revoked at any time.
If your data is required for the fulfillment of a contract or for the performance of pre-contractual measures, we process your data on the basis of Art. 6 (1) lit. b DSGVO. Furthermore, we process your data if it is necessary for the fulfillment of a legal obligation on the basis of Art. 6 (1) lit. c DSGVO.
Data Processing may also be based on our legitimate interest pursuant to Art. 6 (1) lit. f DSGVO. Detailed information on the relevant legal grounds for data processing will be provided in the following sections of this privacy policy.
Recipients of Personal Data
In the course of our business activities, we cooperate with various external entities. Sometimes, it is necessary to transfer personal data to these external parties.
We only share personal data with external entities if it is required for the fulfillment of a contract, if we are legally obligated to do so (e.g., sharing data with tax authorities), if we have a legitimate interest pursuant to Art. 6 (1) lit. f DSGVO, or if another legal basis allows for the transfer of data. When using processors, we only transfer personal data to them based on a valid contract for processing. In the case of joint processing, a joint processing agreement is concluded.
Revocation of Your Consent for Data Processing
Many data processing activities are only possible with your explicit consent. You may revoke any consent you have given at any time. The lawfulness of the data processing carried out prior to the revocation remains unaffected by the revocation.
Right to Object to Data Collection in Special Cases and Against Direct Marketing (Art. 21 DSGVO)
IF THE DATA PROCESSING IS CARRIED OUT ON THE BASIS OF ART. 6 (1) LIT. E OR F DSGVO, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME, FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION, TO THE PROCESSING OF YOUR PERSONAL DATA; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THE RELEVANT LEGAL BASIS FOR THE PROCESSING IS DETAILED IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA, UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT OVERRIDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING IS NECESSARY FOR THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS (OBJECTION UNDER ART. 21 (1) DSGVO).
IF YOUR PERSONAL DATA IS PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR SUCH MARKETING PURPOSES; THIS ALSO APPLIES TO PROFILING, INSOFAR AS IT IS RELATED TO SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT MARKETING PURPOSES (OBJECTION UNDER ART. 21 (2) DSGVO).
Right to Lodge a Complaint with the Competent Supervisory Authority
In the event of violations of the DSGVO, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the location of the alleged infringement. This right to lodge a complaint is without prejudice to other administrative or judicial remedies.
Right to Data Portability
You have the right to receive personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format. You may request that this data be transferred directly to another controller, where technically feasible.
Access, Rectification, and Deletion
In accordance with applicable legal provisions, you have the right to request free access to your stored personal data, its origin, recipients, and the purpose of data processing, and, where applicable, the right to rectification or deletion of this data. For these and any further questions about personal data, you can contact us at any time.
Right to Restriction of Processing
You have the right to request the restriction of the processing of your personal data.
This right can be exercised in the following cases:
If you contest the accuracy of your personal data stored with us, we generally need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data is unlawful, you may request the restriction of data processing instead of deletion.
If we no longer need your personal data but you require it for the establishment, exercise, or defense of legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
If you have filed an objection under Art. 21 (1) DSGVO, a balancing of your interests and ours must be made. Until it is clear whose interests outweigh, you have the right to request the restriction of the processing of your personal data.
If the processing of your personal data has been restricted, these data – apart from their storage – may only be processed with your consent or for the establishment, exercise, or defense of legal claims or to protect the rights of another natural or legal person or for reasons of public interest of the European Union or a member state.
SSL or TLS Encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries you send to us as the site operator.
You can recognize an encrypted connection by the change in the browser's address bar from "http://" to "https://" and the padlock symbol in your browser's address bar.
When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Objection to Advertising Emails
The use of contact data published as part of the imprint obligation for sending unsolicited advertising and informational materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam emails.
4. Data Collection on This Website
Cookies
Our website uses so-called "cookies." Cookies are small data packages that do not harm your device. They are either temporarily stored for the duration of a session (session cookies) or permanently stored (permanent cookies) on your device. Session cookies are automatically deleted after your visit. Permanent cookies remain on your device until you delete them or they are automatically deleted by your web browser.
Cookies can be set by us (first-party cookies) or by third-party companies (third-party cookies). Third-party cookies enable the integration of certain third-party services within websites (e.g., cookies for payment services).
Cookies serve various functions. Many cookies are technically necessary as certain website functions would not work without them (e.g., the shopping cart function or video display). Other cookies can be used to evaluate user behavior or for advertising purposes.
Cookies that are necessary for conducting electronic communication, providing certain requested functions (e.g., for the shopping cart function), or optimizing the website (e.g., cookies for measuring web audience) are stored based on Art. 6 (1) lit. f DSGVO unless another legal basis is provided.
The website operator has a legitimate interest in storing necessary cookies to ensure the technically error-free and optimized provision of services. If consent for storing cookies and similar technologies has been requested, the processing is based solely on this consent (Art. 6 (1) lit. a DSGVO and § 25 (1) TDDDG); the consent can be revoked at any time.
You can set your browser to notify you about the use of cookies and allow cookies only on a case-by-case basis, exclude the acceptance of cookies for specific cases or generally, and activate the automatic deletion of cookies when closing the browser. Disabling cookies may limit the functionality of this website.
Detailed information on the cookies and services used on this website can be found in this privacy policy.
Server Log Files
The provider of the pages collects and stores information automatically in so-called server log files, which your browser automatically transmits to us. These include:
Browser type and browser version
Operating system used
Referrer URL
Hostname of the accessing computer
Time of the server request
IP address
This data is not merged with other data sources.
The collection of this data is based on Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in ensuring the technically error-free display and optimization of their website – for this, the server log files must be collected.
Requests by Email, Phone, or Fax
If you contact us by email, phone, or fax, your inquiry, including any personal data (name, inquiry), will be stored and processed by us for the purpose of handling your request. We do not share this data without your consent.
The processing of this data is based on Art. 6 (1) lit. b DSGVO if your inquiry is related to the fulfillment of a contract or necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling the inquiries directed to us (Art. 6 (1) lit. f DSGVO) or on your consent (Art. 6 (1) lit. a DSGVO) if it has been requested; consent can be revoked at any time.
The data you send us via contact inquiries will remain with us until you request its deletion, revoke your consent for storage, or the purpose for storing the data no longer applies (e.g., after your request has been completed). Legal retention periods – particularly statutory retention periods – remain unaffected.
Communication via WhatsApp
We use the instant messaging service WhatsApp for communication with our customers and other third parties. The provider is WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
Communication is secured through end-to-end encryption (peer-to-peer), which prevents WhatsApp or other third parties from accessing the content of the communication. However, WhatsApp does gain access to metadata generated during the communication process (e.g., sender, recipient, and time of communication). Furthermore, we would like to point out that WhatsApp, according to its own statement, shares users’ personal data with its parent company Facebook, which is based in the United States. For more details on data processing, please refer to WhatsApp’s privacy policy: https://www.whatsapp.com/legal/#privacy-policy.
The use of WhatsApp is based on our legitimate interest in ensuring fast and effective communication with customers, prospects, and other business and contractual partners (Art. 6 (1) sentence 1 lit. f GDPR). If consent has been requested, data processing will be carried out solely on the basis of consent, which may be revoked at any time with future effect.
The communication content exchanged via WhatsApp will remain with us until you request its deletion, revoke your consent for storage, or the purpose for data storage no longer applies (e.g., after the inquiry has been fully processed). Mandatory legal provisions—particularly retention periods—remain unaffected.
Contact Form
If you submit an inquiry via the contact form, the information you provide, including your contact details, will be stored by us for the purpose of processing your inquiry and in case of follow-up questions. We do not share this data without your consent.
The processing of the data entered into the contact form is carried out solely based on your consent (Art. 6 (1) lit. a GDPR). You can revoke your consent at any time. A simple email notification to us is sufficient for this purpose. The legality of the data processing carried out before the revocation remains unaffected by the revocation.
The data you enter in the contact form will remain with us until you request its deletion, revoke your consent to its storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been fully processed). Mandatory legal provisions – in particular, retention periods – remain unaffected.
5. Plugins and Tools
This website provides font files from Google Fonts and Adobe Fonts and displays these fonts. To display this website properly for you, these third parties may collect personal data about you, including:
Information about your browser, network, or device
Information about this website and the page you visit on the website
Your IP address
Google Fonts
This website uses Google Fonts for uniform font display, which are provided by Google. When a page is accessed, your browser loads the required fonts into its cache to display texts and fonts correctly.
To achieve this, the browser you are using must establish a connection to Google’s servers. This allows Google to know that this website was accessed via your IP address. The use of Google Fonts is based on Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in the uniform display of fonts on their website. If consent is requested, the processing is solely based on Art. 6 (1) lit. a DSGVO and § 25 (1) TDDDG, if the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) under the TDDDG. The consent can be revoked at any time.
If your browser does not support Google Fonts, a default font will be used from your computer.
More information about Google Fonts can be found here: https://developers.google.com/fonts/faq
You can view Google’s privacy policy here: https://policies.google.com/privacy?hl=en
Google has certification under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the U.S. Every company certified under the DPF commits to adhering to these standards.
More information can be found here: https://www.dataprivacyframework.gov/participant/5780
Google is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the United States that ensures compliance with European data protection standards for data processing in the USA. Every company certified under the DPF commits to adhering to these data protection standards. Further information can be obtained from the provider at: https://www.dataprivacyframework.gov/participant/5780.
Google Fonts Storage Duration
We have no influence over the storage duration of the data stored by Google for their own purposes. For more information, please refer to Google’s privacy policy.
Adobe Fonts
This website uses Adobe Fonts for uniform font display, which are provided by Adobe Systems Software Ireland Limited. When a page is accessed, your browser loads the required fonts directly from Adobe’s servers. Adobe will know that this website was accessed via your IP address. According to Adobe, no further personal data is stored.
The use of Adobe Fonts is based on Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in the uniform display of fonts on their website. If consent is requested, the processing is solely based on Art. 6 (1) lit. a DSGVO; consent can be revoked at any time.
For more information about Adobe Fonts, visit: https://www.adobe.com/de/privacy/policies/adobe-fonts.html
You can view Adobe’s privacy policy here: https://www.adobe.com/de/privacy/policy.html
Adobe Fonts Storage Duration
We have no influence over the storage duration of the data stored by Adobe for their own purposes. For more information, please refer to Adobe’s privacy policy.
6. Online-Based Audio and Video Conferences (Conference Tools) Data Processing
For communication with our customers, we use online conference tools such as Microsoft Teams, Zoom, and Google Meet. When you communicate with us via video or audio conference using these tools, your personal data is collected and processed by us and the providers.
The conference tools collect all the data you provide or use to participate in the tools (e.g., email address and/or phone number). Additionally, the tools process data regarding the duration of the conference, the start and end times of the conference, the number of participants, and other "contextual information" related to the communication process (metadata).
Moreover, the providers of these tools process all technical data necessary for the online communication, including IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speaker, and the type of connection.
If content is exchanged, uploaded, or otherwise provided within the tools, these will also be stored on the servers of the tool providers. Such content includes cloud recordings, chat/instant messages, voicemails, uploaded photos and videos, files, whiteboards, and other information shared during the use of the service.
Please note that we do not have full control over the data processing operations of the tools used. Our options are primarily determined by the company policies of the respective providers. For further information on data processing by the conference tools, refer to the privacy policies of the respective tools.
Purpose and Legal Basis
The use of Microsoft Teams, Zoom, and Google Meet is to communicate with existing and potential contractual partners or to offer specific services to our customers (Art. 6 (1) S. 1 lit. b DSGVO). Furthermore, the use of these tools serves the general simplification and acceleration of communication with us (legitimate interest pursuant to Art. 6 (1) lit. f DSGVO). If consent has been requested, the processing is based on this consent (Art. 6 (1) lit. a DSGVO); consent can be revoked at any time.
Storage Duration
The data directly collected by us via the video and conference tools will be deleted from our systems as soon as you request its deletion, revoke your consent for storage, or the purpose for storing the data no longer applies. Stored cookies remain on your device until you delete them. Statutory retention periods remain unaffected.
We have no influence on the storage duration of the data stored by the conference tool providers for their own purposes. For details, please refer to the privacy policies of the providers:
Microsoft Teams: https://privacy.microsoft.com/de-de/privacystatement
Google Meet: https://policies.google.com/privacy?hl=de
Conclusion of a Data Processing Agreement
We have entered into Data Processing Agreements with the providers of the mentioned conference tools and fully implement the strict requirements of the German data protection authorities when using these tools.