Royal MORPHS and More


Go to content

Data Protection

Data protection

introduction
With the following privacy policy we would like to inform you about which types of personal data (hereinafter also referred to as "data") we process for what purposes and to what extent The privacy policy applies to all processing of personal data carried out by us, both within the framework the provision of our services as well as in particular on our web pages, in mobile applications as well as within external online presence, such as our social media profiles (collectively referred to as "online offer").

As of: August 20, 2019

Contents

introduction
Responsible
Overview of the processing
Relevant legal bases
contact
Provision of the online offer and web hosting
Advertising communication via mail, fax or telephone
Web analysis and optimization
Presence in social networks
Modification and update of the privacy policy
Responsible

Royal MORPHS and More
Patric Müllejans
Lärchenweg 12
Gelnhausen

E-mail address: morphsandmore@arcor.de

Imprint: www.morphsandmore-english.de

Overview of the processing

The following summary summarizes the types of data processed and the purposes of their processing and refers to the individuals concerned.

Types of processed data

Inventory data (e.g., names, addresses).
Content data (e.g., text input, photographs, videos).
Contact information (e.g., e-mail, phone numbers).
Meta / communication data (e.g., device information, IP addresses).
Usage data (e.g., websites visited, interest in content, access times).
Categories of affected persons
Communication partner.
Users (e.g., website visitors, online service users).
Purposes of processing
Visit Action evaluation.
Direct marketing (for example by e-mail or by post).
Contact requests and communication.
Profiling (creating user profiles).
Remarketing.
Range measurement (e.g., access statistics, recurring visitor detection).
Tracking (e.g., interest / behavioral profiling, use of cookies).
Relevant legal bases
In the following, we share the legal basis of the General Data Protection Regulation (DSGVO), on the basis of which we process the personal data. Please note that in addition to the provisions of the GDPR, the national data protection regulations may apply in your home or country of residence.

Consent (Article 6 (1) (1) (a) GDPR) - The data subject has consented to the processing of personal data relating to him for a specific purpose or several specific purposes.
Performance of the contract and pre-contractual inquiries (Article 6 (1) sentence 1 (b) GDPR) - The processing is necessary for the performance of a contract of which the data subject is a party or for the performance of pre-contractual measures, at the request of the data subject respectively.
Legitimate interests (Article 6 (1) (1) (f) of the GDPR) - Processing is necessary to safeguard the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject protecting personal security Data require, outweigh.

National data protection regulations in Germany: In addition to the data protection regulations of the General Data Protection Regulation, national data protection regulations apply in Germany. This includes in particular the law on the protection against misuse of personal data in data processing (Bundesdatenschutzgesetz - BDSG). In particular, the BDSG contains special rules on the right of access, the right of cancellation, the right to object, the processing of special categories of personal data, processing for other purposes and for transmission, as well as automated decision-making in individual cases, including profiling. Furthermore, it regulates data processing for the purposes of the employment relationship (§ 26 BDSG), in particular with regard to the establishment, implementation or termination of employment relationships and the consent of employees. Furthermore, state data protection laws of the individual federal states can be applied.
contact

When contacting us (for example via contact form, e-mail, telephone or via social media), the details of the requesting persons are processed to the extent necessary to answer the contact requests and any requested action.

Responding to the contact requests in the context of contractual or pre-contractual relationships is to fulfill our contractual obligations or to answer (pre) contractual requests and otherwise on the basis of legitimate interests in answering the requests.

Processed data types: inventory data (e.g., names, addresses), contact data (e.g., e-mail, telephone numbers), content data (e.g., text input, photographs, videos).
Affected persons: Communication partners.
Purposes of processing: contact requests and communication.
Legal basis: Performance of the contract and pre-contractual inquiries (Article 6 (1) sentence 1 (b) GDPR), entitled interests (Article 6 (1) (1) (f) of the DSGVO).
Contact exclusively via e-mail and telephone
Provision of the online offer and web hosting

To provide our online offer securely and efficiently, we use the services of one or more web hosting providers whose servers (or servers managed by them) can access the online offer. For these purposes, we may use infrastructure and platform services, computing capacity, storage and database services, as well as security and technical maintenance services.

The data processed in the provision of the hosting offer may include all information relating to the use and communication of the users of our online offer. This includes, on a regular basis, the IP address necessary to deliver the content of online content to browsers, and all submissions made within our online offer or web pages.

E-mail delivery and hosting: The webhosting services we use also include the sending, receiving and saving of e-mails. For these purposes the addresses of the recipients as well as sender as well as further information concerning the e-mail dispatch (for example the participating providers) as well as the contents of the respective e-mails are processed. The aforementioned data may also be processed for purposes of SPAM detection. We ask you to note that e-mails on the Internet are generally not encrypted. As a rule, e-mails are encrypted on the transport route, but (if no so-called end-to-end encryption method is used) not on the servers from which they are sent and received. We can therefore take no responsibility for the transmission of emails between the sender and the reception on our server.

Collection of access data and log files: We ourselves (or our web hosting provider) collect data for every access to the server (so-called server log files). The server logfiles can contain the address and name of the retrieved web pages and files, the date and time of the retrieval, transferred data volumes, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP addresses. Addresses and the requesting provider belong.

The server log files can be used for security purposes, for example, to avoid overloading the servers (especially in the case of abusive attacks, so-called DDoS attacks) and second, to ensure the utilization of the servers and their stability.

Processed data types: content data (e.g., text input, photographs, videos), usage data (e.g., visited web pages, interest in content, access times), meta / communication data (e.g., device information, IP addresses).
Affected Persons: Users (e.g., Website Visitors, Use

Strato
Advertising communication via mail, fax or telephone

We process personal data for the purpose of advertising communication, which can be transmitted via various channels, such as E-mail, telephone, post or fax can be done. In this context, we observe the legal requirements and obtain the necessary consent, as long as communication is not permitted by law.

The recipients have the right to revoke granted consent at any time or to object to advertising communication at any time.

After revocation or opposition, we can save the data required for the proof of consent up to three years on the basis of our legitimate interests, before we delete them. The processing of this data is limited to the purpose of a possible defense against claims. An individual request for cancellation is possible at any time, provided that at the same time the former existence of a consent is confirmed.

Processed data types: inventory data (e.g., names, addresses), contact information (e.g., e-mail, telephone numbers).
Affected persons: Communication partners.
Purposes of processing: direct marketing (e.g., by e-mail or by post).
Legal basis: Consent (Article 6 (1) (1) (a) GDPR), Legitimate interests (Article 6 (1) (1) (f) of the GDPR).
Web analysis and optimization
The web analysis (also called "range measurement") is used to evaluate the flow of visitors to our online offer and can behavior, interests or demographic information about the visitors, such. the age or gender, as pseudonymous values include. With the help of range analysis we can e.g. recognize when our online offer or its features or content are used most frequently or are invited to reuse. Likewise, we can understand which areas need optimization.

In addition to web analytics, we can also use test methods, e.g. to test and optimize different versions of our online offer or its components.

For these purposes, so-called user profiles can be created and saved in a file (so-called "cookie") or similar methods with the same purpose can be used. To this information can e.g. content viewed, web pages visited and elements used there, and technical information such as the browser used, the computer system used, and times of use. If users have consented to the collection of their location data, these can also be processed depending on the provider.

It also stores the IP addresses of the users. However, we use an IP masking method (i.e., pseudonymization by truncating the IP address) to protect users. In general, in the context of web analysis, A / B-testing and optimization, no clear data of the users (such as e-mail addresses or names) are stored, but pseudonyms. That is, we as well as the providers of the software used do not know the actual identity of the users, but only the information stored in their profiles for the purposes of the respective procedures.

Notes on legal bases: If we ask users for their consent to the use of third-party providers, the legal basis for the processing of data is the consent. Otherwise, users' data will be processed based on our legitimate interests (i.e., interest in efficient, economical and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.

Affected Persons: Users (e.g., website visitors, online service users).
Purposes of processing: range measurement (e.g., access statistics, return visitor recognition), tracking (e.g., interest / behavioral profiling, use of cookies), visit action reporting, profiling (user profiling).
Security measures: IP masking (pseudonymization of the IP address).
Legal basis: Consent (Article 6 (1) (1) (a) GDPR), Legitimate interests (Article 6 (1) (1) (f) of the GDPR).
Presence in social networks
We maintain online presence within social networks to communicate with or provide information about our users.

We point out that data of the users outside the area of the European Union can be processed. This may result in risks to users because, e.g. the enforcement of user rights could be made more difficult. With respect to US providers that are certified under the Privacy Shield or offer comparable guarantees of a secure level of data protection, we point out that they are committed to respecting EU privacy standards.

Furthermore, the data of the users within social networks is usually processed for market research and advertising purposes. Thus, e.g. Based on the user behavior and the resulting interests of users usage profiles are created. The usage profiles may in turn be used to e.g. To place advertisements inside and outside the networks that are allegedly in the interests of users. For these purposes, cookies are usually stored on the computers of the users, in which the user behavior and the interests of the users are stored. Furthermore, in the usage profiles, data can also be stored independently of the devices used by the users (in particular if the users are members of the respective platforms and are logged in to them).

For a detailed description of the respective forms of processing and the possibilities of opting out (opt-out), we refer to the privacy statements and information provided by the operators of the respective networks.

Also in the case of requests for information and the assertion of data subject rights, we point out that these can be claimed most effectively from the providers. Only the providers have access to the data of the users and can directly take appropriate measures and provide information. If you still need help, then you can contact us.

Processed data types: inventory data (eg names, addresses), contact data (eg e-mail, telephone numbers), content data (eg text input, photographs, videos), usage data (eg visited websites, interest in content, access times), meta / communication data (eg Device information, IP addresses).
Affected Persons: Users (e.g., website visitors, online service users).
Purposes of processing: contact requests and communication, tracking (e.g., interest / behavioral profiling, use of cookies), remarketing, reach measurement (e.g., access statistics, recurring visitor detection).
Legal basis: legitimate interests (Article 6 (1) sentence 1 (f) of the DSGVO).
Deployed services and service providers:
Instagram: social network; Service Provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA; Website: https://www.instagram.com; Privacy Policy: http://instagram.com/about/legal/privacy.
Facebook: social network; Service Providers: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland, Parent Companies: Facebook, 1 Hacker Way, Menlo Park, CA 94025, USA; Website: https://www.facebook.com; Privacy Policy: https://www.facebook.com/about/privacy; Privacy Shield (ensuring privacy levels when processing data in the US): https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active; Opt-Out: Advertisement Settings: https://www.facebook.com/settings?tab=ads; Additional information on data protection: Agreement on joint processing of personal data on Facebook pages: https://www.facebook.com/legal/terms/page_controller_addendum, Privacy policy for Facebook pages: https://www.facebook.com/legal/ terms / information_about_page_insights_data.
Modification and update of the privacy policy
We ask you to regularly inform yourself about the content of our privacy policy. We will adjust the Privacy Policy as soon as the changes to the data processing we make require it. We will notify you as soon as the changes require your participation (eg consent) or other individual notification.

Created with Datenschutz-Generator.de by Dr. med. jur. Thomas Schwenke


Back to content | Back to main menu