As the operators of artspace.blog we take the protection of your personal data very seriously. We collect as little data as possible in accordance with the principles of the GDPR (transparency, purpose limitation of data processing, data minimization and confidentiality) and treat it confidentially and in accordance with the statutory data protection regulations.

This privacy policy declaration is intended to inform you what data we collect, on what legal basis this is done, and what your rights are in relation to your data.

If anything is unclear to you, or if you have any questions, please write to us at the address given under “Person responsible for the processing of your data”. We will be happy to help and answer your questions.

The use of our website is usually possible without providing personal data. As far as on our sides personal data (for example name, address or e-mail addresses) are collected, this is as far as possible on a voluntary basis.

This data will not be passed on to third parties without explicit consent.

Person responsible for the processing of your data:

Michael Fischer,

Stormhof 6,

D-38440 Wolfsburg, Germany

E-Mail: hello [at] artspace.blog

Your rights:

You have the right to information according to Art. 15 GDPR, whether we process personal data of you. If this is the case, this will result in further information obligations on our part.

Furthermore, you have the right to:

– Correction of the data according to Art.16 GDPR,
– Deletion of the data according to Art. 17 GDPR,
– Restriction of the processing of the data according to Art. 18 GDPR, if there are no further legal requirements to the contrary.

You have the right to receive the data concerning you (that you have provided to us) in accordance with Art. 20 GDPR, and to request its transfer to other data controllers.

For this purpose, please address the request to the address given above.

You also have the right to lodge a complaint with the competent supervisory authority pursuant to Article 77 of the GDPR.

Right of revocation:

You have the right to revoke consents granted in accordance with Art. 6, Para. 1 lit.a, Art. 7 Para. 3 or Art. 9, Para. 2 lit. a GDPR with effect for the future. This does not affect the lawfulness of the processing until the revocation.

Right of objection:

You may object to the future processing of data concerning you in accordance with Art. 21 GDPR at any time. The objection can be made in particular against the processing for purposes of direct advertising.

Cookies:

Cookies are small text files that are stored on your hard drive and automatically deleted depending on your browser settings or after a specified period of time. You can adjust your browser settings at any time so that you

– allow the use of cookies,
– exclude them,
– the use of cookies requires your explicit confirmation,
– or and that they are automatically deleted after the end of the session.

We only use technically necessary cookies to operate this site, without which the basic functions of this website would not be possible.

Technical cookies do not require special consent, and are deleted after you leave the website.

Fonts vs. Google Fonts:

This website uses the Google Font “Open Sans” and others to display text.
We host all fonts used on our pages locally. There is no query of your IP address to display the fonts.

Business related data processing:

In addition, we process
– Contract data (e.g. subject matter of the contract, term, customer category).
– Payment data (e.g. bank details, payment history).

our customers, prospective customers and business partners for the provision of contractual services, customer care, marketing, advertising and market research.

The purpose of processing is to provide contractual services, customer service and billing. The legal bases for the processing result from Article 6 Paragraph 1 Letter b of the GDPR (contractual services), Article 6 Paragraph 1 Letter f of the GDPR (analysis, statistics, optimisation, security measures).

We process data that is required to fulfill the contractual services and point out the necessity of your information.

Disclosure to external parties only takes place if it is required as part of an order. When processing the data provided to us as part of an order, we act in accordance with the instructions of the client and the legal requirements for order processing in accordance with Art. 28 GDPR and process the data for no other purposes than the order-related purposes.

We delete the data after the statutory warranty and comparable obligations have expired. The necessity of storing the data is checked every three years; in the case of legal archiving obligations, the deletion takes place after their expiry (6 years, according to § 257 paragraph 1 HGB, 10 years, according to § 147 paragraph 1 AO). In the case of data disclosed to us by the client as part of an order, we delete the data in accordance with the specifications of the order, generally after the end of the order.

Hosting:

The hosting services we use serve to provide the following services: infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services that I use for the purpose of operating this online offer.

In doing so, we or our hosting provider process content data, usage data, meta and communication data from customers, interested parties and visitors to this online offer on the basis of our legitimate interests in making this online offer available efficiently and securely in accordance with Article 6 (1) (f) GDPR. GVO in conjunction with Art. 28 GDPR (conclusion of order processing contract).

Collection of access data and log files: We, or our hosting provider, collect data on every access to the server on which this service is located on the basis of our legitimate interest within the meaning of Article 6 Paragraph 1 lit. so-called server log files). The access data includes the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider.

Contacting us:

If you contact us by email, the emails and the associated data will be stored in our mail system. The legal basis for this is either Art. 6, Para. 1 lit. a, b or c GDPR.

When contacting us (e.g. by e-mail, telephone or via social media), the information provided by the user is processed in order to process the contact request and its processing in accordance with Article 6 (1) (b) GDPR. User information can be stored in a customer relationship management system (“CRM system”) or comparable inquiry organization. We delete the requests if they are no longer necessary. We review necessity every two years; Furthermore, the statutory archiving obligations apply.

I would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.

Cooperation with processors and third parties:

If I commission third-party providers (such as programmers, copywriters, printers, etc.) as part of a project, I will transfer your relevant data to them or grant them access to the data. This is done on the basis of a legal permit (if a transmission of the data to third parties, such as online printers, pursuant to Art. 6 Para. 1 lit. b GDPR is required to fulfill the contract), you have consented , a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).

Administration, financial accounting, office organization, contact management:

We process data as part of administrative tasks and the organization of our operations, financial accounting and compliance with legal obligations, such as B. archiving. We use the same data that we process to provide our contractual services.

The basis of processing is Art. 6 Para. 1 lit. c. GDPR, Article 6 Paragraph 1 lit. f. GDPR. Customers, interested parties, business partners and website visitors are affected by the processing. Our interest and the purpose of the processing is the administration, financial accounting, office organization and archiving of data – i.e. tasks that serve to maintain our business activities, perform our tasks and provide our services. The deletion of the data with regard to contractual services and contractual communication corresponds to the above-mentioned processing activities.

We disclose or transmit data to the financial administration, consultants such as tax consultants or auditors as well as other fee offices and payment service providers.

Furthermore, on the basis of our business interests, we store information on suppliers, organizers and other business partners, e.g. for the purpose of later contact. We store this mostly company-related data permanently.

Definitions of terms:

This section provides you with an overview of the terms used in this data protection declaration. Many of the terms are taken from the law and defined above all in Art. 4 GDPR.

The legal definitions are binding. The following explanations, on the other hand, are intended primarily for understanding. The terms are sorted alphabetically.

– Personal data: “Personal data” means any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified directly or indirectly, in particular by means of assignment to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or one or more special features, are an expression of the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

– Responsible person: The “responsible person” is the natural or legal person, authority, institution or other body that alone or jointly with others decides on the purposes and means of processing personal data.

– Processing: “Processing” is any process or series of processes carried out with or without the aid of automated processes in connection with personal data. The term goes far and covers practically every handling of data, be it collection, evaluation, storage, transmission or deletion.

We reserve the right to update this declaration to honor changes in our services and the applicable laws.

© 2022 artspace.blog