Personal information is data that can be used to identify or contact a single person.
Here are some examples of the types of personal information I may collect and how I may use it:
I collect your data as a result of your sharing of your data with me. This may, for instance be information you enter into my contact form, including your name, email address, message information, or via email or phone or if you contact me over social media I may collect profile information.
I also collect data in a from that does not, on its own, permit direct association with any specific individual. I may collect, use, transfer, and disclose non-personal information for any purpose. The following are some examples of non-personal information that I collect and how I may use it:
I may collect information regarding customer activities of my apps or designs. This information is aggregated and used to help me provide more useful information to our customers and to understand which of my apps or designs are of most interest.
If I do combine non-personal information with personal information the combined information will be treated as personal information for as long as it remains combined.
Some of my apps may use non-personalized ads that are not based on a user's behavior. They collect contextual information like city-level geo-targeting based on your current location. I do not use mobile ad identifiers or cookies for ad targeting, but for frequency capping, aggregated ad reporting, and to combat fraud and abuse. Within these apps you have to consent to these ads and you can withdraw your consent at any time within the apps.
On my website I gather some information automatically and store it in server log files. This information includes hashed internet Protocol (IP) addresses in memory only for up to 24 hours. Hashed means that it is not your complete IP address that is stored and it can not be used to identify your individual internet connection or physical address, meaning it is non-personal information. I use this information to administer the website.
At times I may provide third parties with certain personal information to provide or improve my products and services. When I do, I require those third parties to handle it in accordane with relevant laws. I do not sell personal information, and personal information will never be shared with third parties for their marketing purposes.
I share personal information with companies who provide services such as information processing. These companies are obligated to protect your information.
It may be necessary - by law, legal process, litigation, and/or requests from governmental authorities within or outside your country of residence - for me to disclose your personal information. I may also disclose information about you, but only where there is a lawful basis for doing so, if I determine that disclosure is reasonably necessary to protect my operations or users. This means poviding information to governmental authorities.
I take the security of your personal information very seriously. This website uses either SSL or TLS encryption. There are technical and organizational measures designed to ensure, to the maximum extent possible, the security and integrity of personal information, in particular in relation to unauthorized treatment and its accidental loss, destruction or damage.
When you use social media websites to contact me and you post your personal information publicly, the personal information and content you share is visible to other users and can be read, collected, or used by them. You are responsible for the personal information you choose to share or submit in this instance.
Security gaps can occur in data transmissions over the internet (e.g. email) and transmissions can be intercepted and read. It is not possible to completely protect data against third party access.
I do not take any decisions involving the use of algorithms or profiling that significantly affect you.
The data processing controller on this website is:
Am Sonnenhang 19
87496 Untrasried, Germany
Phone: +49 157 54295084
The controller is the natural person or legal entity that single-handedly or jointly with others makes decisions as to the purposes of and resources for the processing of personal information.
I have appointed a data protection officer for my company.
Am Sonnenhang 19
87496 Untrasried, Germany
Phone: +49 157 54295084
Right of access:
You have the right to request a copy of your personal information which I hold about you.
You have the right to refuse to be subjected to automated decision making, including profiling.
Right to data portability:
You have the right to demand that I hand over any data I automatically process on the basis of your consent or in order to fulfil a contract be handed over to you or a third party in a commonly used, machine readable format. If you should demand the direct transfer of the data to another controller, this will be done only if it is technically feasible.
Information about rectification and eradication of personal information:
Within the scope of the applicable statutory provisions, you have the right to at any time demand information about your archived personal information, their source and recipients as well as the purpose of the processing of your personal information. You may also have a right to have your personal information rectified or eradicated. If you have questions about this subject matter or any other questions about personal information, please do not hesitate to contact me at any time at the address provided in section „Designation of a data protection officer as mandated by law".
Right to log a complaint with the competent supervisory agency:
In the event of violations of the GDPR, data subjects are entitled to log a complaint with a supervisory agency, in particular in the member state where they usually maintain their domicile, place of work or at the place where the alleged violation occurred. The right to log a complaint is in effect regardless of any other administrative or court proceedings available as legal recourses.
Revocation of your consent to the processing of personal information:
A wide range of personal information processing transactions are possible only subject to your express consent. You can also revoke at any time any consent you have already given me. To do so, all you are required to do is send me an informal notification via email. This shall be without prejudice to the lawfulness of any personal information collection that occurred prior to your revocation. The email address is provided in section "Designation of a data protection officer as mandated by law".
Right to demand processing restrictions:
You have the right to demand the imposition of restrictions as far as the processing of your personal information is concerned. To do so, you can contact me at any time at the address provided in section „Designation of a data protection officer as mandated by law". The right to demand restriction of processing applies in the following cases:
1. In the event that you should dispute the correctness of your data archived by me, I will usually need some time to verify this claim. During the time that this investigation is ongoing, you have the right to demand that I restrict the processing of your personal information.
2. If the processing of your personal information was/is conducted in an unlawful manner, you have the option to demand the restriction of the processing of your personal information in lieu of demanding the eradication of this data.
3. If I do not need your personal information any longer and you need it to exercise, defend or claim legal entitlements, you have the right to demand the restriction of the processing of your personal information instead of its eradication.
4. If you have raised an objection pursuant to Art. 21 Sect. 1 GDPR, your rights and my rights will have to be weighed against each other. As long as it has not been determined whose interests prevail, you have the right to demand a restriction of the processing of your personal data.
If you have restricted the processing of your personal information, this information – with the exception of their archiving – may be processed only subject to your consent or to claim, exercise or defend legal entitlements or to protect the rights of other natural persons or legal entities or for important public interest reasons cited by the European Union or a member state of the EU.
Right to object to data collection in special cases and direct mail (Art. 21 GDPR):
My website, apps, services and social media sites may contain links to third-party websites, products, and services. My website, apps, services and social media sites may also use or offer products or services from third parties - for example, an affiliate product.
Information collected by third parties, which may include such things as contact details or cookies, is governed by their privacy practices. I encourage you to learn about the privacy practices of those third parties.
Google Web Fonts with local embedding are provided by Google to ensure the uniform use of fonts on this site. These Google fonts are locally installed so that a connection to Google's servers will not be established in conjunction with this website.
In some of my apps I may use the marketing services of Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google"). These services allow me to display non-personalized advertisements.
I maintain publicly available profiles in social networks. The individual social networks I use can be found below.
Social networks such as Instagram or Twitter can generally analyse your user behaviour comprehensively if you visit their website or a website with integrated social media content (e.g. like buttons or banner ads). When you visit my social media pages, numerous data protection-relevant procesing operations are triggered. In detail:
If you are logged in to your social media account and visit my social media page, the operator of the social media portal can assign this visit to your user account. Under certain circumstances, your personal data may also be recorded if you are not logged in or do not have an account with the respective social media portal. In this case, this data is collected, for example, via cookies stored on your device or by recording your IP address.
Using the data collected in this way, the operators of the social media portals can create user profiles in which their preferences and interests are stored. This way you can see interest-based advertising inside and outside of your social media presence. If you have an account with the social network, interest-based advertising can be displayed on any device you are logged in to or have logged in to.
My social media appearances should ensure the widest possible presence on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. The analysis processes initiated by the social networks may be based on divergent legal bases to be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 (1) (a) GDPR).
Responsibility and assertion of rights:
If you visit one of my social media sites (e.g. Instagram), I, together with the operator of the social media platform, are responsible for the data processing operations triggered during this visit. You can in principle protect your rights (information, correction, deletion, limitation of processing, data portability and complaint) vis-à-vis me as well as vis-à-vis the operator of the respective social media portal (e.g. Instagram). Please note that despite the shared responsibility with the social media portal operators, I do not have full influence on the data processing operations of the social media portals. My options are determined by the company policy of the respective provider.
Period of storage:
The data collected directly by me via the social media presence will be deleted from my systems as soon as the purpose for their storage lapses, you ask me to delete it, you withdraw your consent to the storage or the purpose for the data storage lapses. Stored cookies remain on your device until you delete them. Mandatory statutory provisions – in particular, retention periods – remain unaffected.
I use the short messaging service Twitter. The provider is Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, United States. Twitter is certified under the EU-US Privacy Shield.
You can customise your Twitter privacy settings in your user account. You may click on the following link and log in: https://twitter.com/personalization.
When I receive a privacy question or question about personal information in response to an access request and your issue may be more substantive in nature, I may request more information from you. All such substantive contacts receive a response within seven days wherever possible - providing a response on the issue raised, requesting additional information where necessary or indicating that a response will requeire additional time. You may at any time refer your complaint to the relevant regulator in your jurisdiction if you are unsatisfied with a reply received from me.