Data privacy statement
In accordance with my legal obligations, I would like to inform you about how we collect and use your personal data.
Responsible party in accordance with data protection law:
MECHTHILD BÜLOW PUBLIC AFFAIRS
vertreten durch Mechthild Bülow
Friedrichstr. 171
D – 10117 Berlin
office@mechthildbuelow.com | +49 (0) 30 312 39 86
General
When you use my website, personal information about you will be collected. This can be done by entering the data independently – such as your e-mail address. The system also automatically records data about you, such as your visit to my website. This is done regardless of the device or software you use to access the website.
Any data entered by you on my website is voluntary. Personal data is collected on this website only in the context of applicable data protection laws, more specifically, the General Data Protection Regulation (GDPR). The technical terms used in the text are explained in more detail in Article 4 of the GDPR.
According to the GDPR, data processing is specifically permitted in three cases:
• According to Art. 6 para. 1 letter (a) and Art. 7of the GDPR, if you have given consent allowing us to process your data. In each case, we will inform you in advance in this data privacy statement and on the basis of the consent in accordance with Art. 4 No. 11 of the GDPR outlining to what extent and under what circumstances your data is processed by us.
• According to Art. 6 para. 1 letter (b) of the GDPR, if the processing of your personal data is necessary for the initiation, conclusion or settlement of a contractual relationship.
• According to Art. 6 para. 1 letter (f) of the GDPR, if, after a balance of interests, the processing is necessary to safeguard our legitimate interests. In particular, this includes our interests in analysing, optimising and securing the information on our website. This specifically includes an analysis of user behaviour, the creation of profiles for advertising purposes, the storage of access data and the use of third-party providers.
Inventory and usage data, advertising
I collect inventory data (name, address and e-mail address, for example, and possibly services used) to the extent this information is necessary for the justification, configuration or modification of a contractual relationship between myself and the user.
Furthermore, I collect usage data (for example, visits to the website, interest in products) to enable the user to utilise the services on this website.
Usage data is only compiled if necessary and to the extent required for billing purposes. Otherwise, usage data will only be created pseudonymously and only with your consent. You can withdraw your consent at any time by sending a request to the address indicated in the imprint or to the person named in this privacy statement.
The legal basis for this data processing is my legitimate interests in the analysis of the website and its use in accordance with Art. 6 para. 1 letter (f) of the GDPR and if necessary, the legal authorisation to store data in the scope of initiating a contractual relationship in accordance with Art. 6 para. 1 letter (b) of the GDPR.
Furthermore, my provider stores information on each use of this website in server log files that are automatically transmitted by your browser. This includes the following information:
• Your IP address
• Your browser type and version
• Host name of the accessing device
• Date and time of access to my website
• Name(s) of the page or pages visited
• Websites through which you came upon my website
This data is used for statistical purposes only and does not enable me to identify you as a user.
Contact
If you contact me (e.g., via e-mail, contact form, telephone or social media), your data will be processed in order to manage the contact request. The legal basis for processing the transmitted data is Art. 6 para. 1 letter (b) of the GDPR.
Encryption of data entries
Your data will be encrypted when you enter information on my website or contact me (e.g., via contact form). This prevents third parties from reading the data you enter. You can recognise the encryption by the lock symbol in your browser and by the fact that the address line starts with “https” instead of “http”.
Duration of storage
I will erase your data as soon as it is no longer necessary to achieve the purpose of its collection, that is, when the communication with you ends. The communication is over when the circumstances are settled. Otherwise, the legally specified data retention periods apply (e.g., in the context of tax law).
Transfer to third parties
I will not share your information with third parties unless this is permitted by law. However, a transfer of your data may be required for the performance of a contract and therefore permitted in accordance with Art. 6 para. 1 letter (b) of the GDPR on the basis of my legitimate interest in an effective performance as specified in Art. 6 para. 1 letter (f) of the GDPR. It may also be permitted by your consent and/or become necessary if I receive a legal request to release your data from a state or public authority in accordance with Art. 6 para. 1 letter (b) of the GDPR.
Transfer to foreign countries, especially the USA
For various functions, my website uses external providers based outside the EU. In particular, cookies, active Java scripts and other technologies may cause your data to be processed and stored outside the EU. However, I will not transfer your data to a third country unless the EU Commission has established comparable data protection to the EU, or you have given me your consent, or I have agreed to the standard data protection contractual clauses with the provider. For the USA, the Privacy Shield Agreement (see https://www.privacyshield.gov/welcome) has established sufficient data protection under certain conditions. For more information about your rights regarding the following data transfers to the United States, see http://ec.europa.eu/justice/data-protection/document/citizens-guide_en.pdf
Withdrawal of your consent to data processing
Many data processing operations are only possible with your express consent. You can withdraw your given consent at any time. For this purpose, an informal message by e-mail to me is sufficient. The legality of the data processing carried out until the withdrawal remains unaffected.
Right to lodge a complaint with the responsible authorities
In the case of violations of data protection law, the data subject has the right to lodge a complaint to the competent supervisory authority. The competent supervisory authority in data protection matters is the state data protection officer of the German federal state in which my company is based. A list of the data protection officers along with their contact data is available from the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Right to data portability
You have the right to have data that I automatically process on the basis of your consent or in the performance of a contract transmitted to yourself or to a third party in a standard, machine-readable format. If you request having the data transmitted directly to another authorised party, this will only be done to a technically feasible extent.
Information, restriction, erasure
Within the scope of the applicable legal provisions, you have the right at any time to receive free information about your stored personal data, their origin and recipient(s) and the purpose of data processing. You also have the right, if necessary, to rectification, restriction or erasure of this data. For this purpose and for further questions on the subject of personal data, you can contact the address provided in the imprint at any time.
Cookies
My website uses cookies. These are small text files that are automatically saved in or by the Internet browser on your device (e.g. computer, tablet or smartphone) when you visit my website. These cookies contain characteristic strings of information that allow for clear identification of the Internet browser when the website is subsequently accessed. I use cookies to make my website more user-friendly. They enable me to automatically determine whether you have visited my website in the past, e.g., as a logged-in user. These cookies are automatically deleted after a defined period of time. The data processed for the aforementioned purpose is required to safeguard my legitimate interests as well as those of third parties in accordance with Art. 6 para. 1 sentence 1 letter (f) of the GDPR.
You can configure your Internet browser to temporarily or permanently deactivate cookies from my website at any time. Furthermore, previously activated cookies can be deleted at any time with an Internet browser or other software programs. This is possible with all standard Internet browsers. Deactivating cookies in the Internet browser may limit the functionality of this website.
