Privacy Policy

Introduction

This website is operated by
stay zen club.

We care deeply about handling your data responsibly and keeping it safe. That’s why we do everything we can to comply with the requirements of the GDPR. On this page, we explain how we process your data on our website. We use clear and straightforward language so that you can truly understand what happens to your data.

General Information

Processing of Personal Data and Other Terms

Data protection applies whenever personal data is processed. Personal data means any information that can identify you personally. This includes, for example, the IP address of the device (PC, laptop, smartphone, etc.) you are currently using. Data is considered processed whenever “something happens to it.” For example, your browser transmits your IP address to our hosting provider, where it is automatically stored. This counts as the processing (according to Art. 4 No. 2 GDPR) of personal data (as defined in Art. 4 No. 1 GDPR). You can find these and further legal definitions in Art. 4 GDPR.

Applicable Regulations / Laws – GDPR, BDSG and TDDDG

The scope of data protection is defined by law. In this case, the relevant laws are the GDPR (General Data Protection Regulation) as a European regulation, and the BDSG (German Federal Data Protection Act) as national law. In addition, the TDDDG (German Telecommunications and Telemedia Data Protection Act) supplements the provisions of the GDPR, particularly with regard to the use of cookies

Data Controller

The party responsible for data processing on this website is the controller as defined by the GDPR. This is the natural or legal person who, alone or together with others, decides on the purposes and means of processing personal data.
You can reach the controller at:

stay zen club
Belgradstrasse 150a
80804 München
Germany

hey@stayzenclub.com
0049+(0)151-41356484

How Data Is Generally Processed on This Website

As we’ve already mentioned, there are certain types of data (such as your IP address) that are collected automatically. This data is mainly needed to ensure the technical operation of our website.

If we use personal data beyond this, or if we collect other types of data, we will inform you about it and, where necessary, ask for your consent. Other personal data is information that you actively choose to share with us. You can find more detailed information about this further below.

Your Rights

The GDPR grants you extensive rights. For example, you have the right to receive free information about the origin, recipients, and purpose of your stored personal data. You can also request the correction, restriction, or deletion of this data, or file a complaint with the competent data protection authority.

Any consent you have given can be revoked at any time. Details about these rights and how you can exercise them can be found in the final section of this privacy policy.

Privacy - Our Perspective

For us, data protection is more than just a legal obligation! Personal data has great value, and handling it carefully should be a matter of course in our digital world. As a visitor to our website, you should always be able to decide what happens with your data, when it happens, and by whom. That’s why we are committed to complying with all legal requirements, collecting only the data we truly need, and always treating it confidentially.

Sharing and Deletion of Data

The sharing and deletion of data are also sensitive and important topics. We would therefore like to briefly inform you about our general approach. Data is only shared on the basis of a legal ground and only when it is absolutely necessary. This is particularly the case when working with so-called processors, where a data processing agreement has been concluded in accordance with Art. 28 GDPR.

We delete your data once the purpose and legal basis for processing no longer apply, provided that no other legal obligations prevent deletion. For an overview, see Art. 17 GDPR. For further details, please refer to this privacy policy or contact the controller directly if you have specific questions.

Hosting

This website is hosted externally. The personal data collected on this website is stored on the host's servers. This includes automatically collected and stored log files (see below for more details) as well as all other data provided by website visitors.

External hosting is carried out for the purpose of providing our website in a secure, fast and reliable manner and, in this context, serves to fulfil our contractual obligations towards our potential and existing customers.

The legal basis for processing is Art. 6 (1) (a), (b) and (f) GDPR, as well as § 25 (1) TDDDG, insofar as consent includes the storage of cookies or access to information on the end device of the website visitor or user within the meaning of the TDDDG.

Our host only processes data that is necessary to fulfil its performance obligations and acts as our processor, i.e. it is subject to our instructions. We have concluded a corresponding contract for order processing with our host.

We use the following host:

All-Inkl.com

ALL-INKL.com - Neue Medien Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany

https://all-inkl.com/datenschutzinformationen/.claim

Translated with DeepL.com (free version)

Legal Bases

The processing of personal data always requires a legal basis. According to Art. 6 (1) sentence 1 GDPR, the following options apply:

• The data subject has given their consent to the processing of personal data relating to them for one or more specific purposes;

• The processing is necessary for the performance of a contract to which the data subject is party, or to take steps at the request of the data subject prior to entering into a contract;

• The processing is necessary for compliance with a legal obligation to which the controller is subject;

• The processing is necessary in order to protect the vital interests of the data subject or of another natural person;

• The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

• The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of personal data, particularly where the data subject is a child.

What Happens on Our Website

When you visit our website, we process your personal data. To protect this data as best as possible against unauthorized access by third parties, we use SSL or TLS encryption. You can recognize this encrypted connection by the “https://” or the lock symbol in your browser’s address bar.

Below, you will learn which data is collected when you visit our website, the purpose of this collection, and the legal basis on which it is processed.

Data Collection When Accessing the Website

When you access the website, certain information is automatically stored in so-called server log files. This information includes:

• Browser type and version

• Operating system used

• Referrer URL

• Hostname of the accessing computer

• Time of the server request

• IP address

This data is temporarily necessary to ensure that our website can be displayed to you continuously and without problems. In particular, this data is used for the following purposes:

• Security of the website system

• Stability of the website system

• Error detection and troubleshooting on the website

• Establishing a connection to the website

• Displaying the website

Data processing is carried out in accordance with Art. 6 (1) (f) GDPR, based on our legitimate interest in the processing of this data, particularly in ensuring the functionality and security of the website.

Where possible, this data is stored in a pseudonymized form and deleted once the relevant purpose has been achieved.

If the server log files make it possible to identify the data subject, the data will be stored for a maximum of 14 days. An exception applies if a security-related incident occurs. In that case, the server log files will be stored until the incident has been resolved and fully clarified. Apart from this, no combination of this data with other data takes place.

Cookies

This website uses so-called cookies. Cookies are small data sets stored in your device’s browser that are linked to our website. Setting cookies can make navigation on the website easier for visitors.

In our cookie consent tool, you will find all the information about the cookies we use on our website (in some cases, only after you have given your consent).

Rejecting Cookies

All cookies that are not technically necessary can be managed directly via our cookie consent tool. You can also prevent cookies from being set by adjusting your browser settings. Here you can find the relevant links to commonly used browsers:

Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen?redirectslug=Cookies+l%C3%B6schen&redirectlocale=de

Google Chrome: https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=de

Microsoft Edge: https://support.microsoft.com/de-de/windows/l%C3%B6schen-und-verwalten-von-cookies-168dab11-0753-043d-7c16-ede5947fc64d

Safari: https://support.apple.com/guide/mdm/mdmf7d5714d4/web and
https://support.apple.com/guide/safari/sfri11471/mac

If you are using a different browser, we recommend entering the name of your browser together with “delete and manage cookies” into a search engine and following the official link for your browser.

Alternatively, you can also manage your cookie settings at:
www.aboutads.info/choices/ or www.youronlinechoices.com.

We must point out, however, that completely blocking or deleting cookies may impair your ability to use our website properly.

Technically Necessary Cookies

On this website, we use technically necessary cookies to ensure that our website functions correctly and in accordance with applicable laws. They also help make the website more user-friendly. Some functions of our website cannot be provided without the use of cookies. The legal basis for this is, depending on the individual case, Art. 6 (1) (b), (c) and/or (f) GDPR.

Technically Non-Essential Cookies

In addition, we also use cookies on our website that are not technically necessary. These cookies are used, for example, to analyze visitors’ browsing behavior or to provide certain features of the website that are not strictly required for its technical operation. The legal basis for this is your consent in accordance with Art. 6 (1) (a) GDPR.

Technically non-essential cookies are only set with your consent, which you can withdraw at any time via the cookie consent tool.

Data Processing Through User Input

Collection of Your Own Data

On our website, we offer the following services: coaching, mindfulness, and meditation courses.

For this purpose, we collect the following data:

• Name

• Email address

The legal basis for this data processing is Art. 6 (1) (b) GDPR. The data will be deleted once the respective purpose no longer applies and deletion is permissible under statutory requirements.

If you contact us by email, we process your email address and, if applicable, any other data contained in the email. This data is stored on the mail server and, in part, on the respective end devices. Depending on the subject of your request, the legal basis for this is regularly Art. 6 (1) (f) GDPR or Art. 6 (1) (b) GDPR. The data will be deleted once the respective purpose no longer applies and deletion is permissible under statutory requirements.

We also provide a contact form on our website. This form serves to get in touch with our company. In this form, we generally process your first and last name, your telephone number, your email address, a postal address, and the content of your message. The data is stored on our web server and forwarded internally to the responsible email addresses.

The legal basis for this data processing is Art. 6 (1) (f) GDPR, as we have a legitimate interest in responding to your inquiry and offering you a straightforward way to contact us. If the contact aims at concluding a contract, Art. 6 (1) (b) GDPR serves as an additional legal basis.

We delete this data no later than three months after receipt, unless it is needed for an existing contractual relationship.

We use the contact form provided by:

Squarespace

Squarespace Ireland Limited, Squarespace House, Ship Street Great, Dublin 8, Ireland
https://www.squarespace.com/privacy

Appointment Scheduling Tool

Zeeg

To enable you to book an appointment with us, we use the functions of Zeeg. This service is provided by Zeeg GmbH, Friedrichstraße 114A, 10117 Berlin, Germany.

For the purpose of scheduling appointments, personal data such as your name, email address, phone number, appointment time, and the subject of the appointment are collected and entered into the designated form. The data is used for planning, carrying out, and, if necessary, following up on the appointment.

Zeeg may set cookies on our website to collect and store data. These cookies are only set with your consent. You can withdraw or manage your consent at any time via our cookie consent tool. The legal basis for this is Art. 6 (1) (a) GDPR and § 25 (1) TDDDG, insofar as your consent includes access to information on your device or the storage of cookies within the meaning of the TDDDG.

In all other respects, the legal basis for using Zeeg is Art. 6 (1) (f) GDPR, as we have a legitimate interest in engaging directly with customers, potential customers, and other interested parties and in handling inquiries quickly and efficiently.

The data will be stored until you request its deletion, withdraw your consent to storage, or the purpose of storage no longer applies. Mandatory statutory retention obligations remain unaffected.

Further information:
https://zeeg.me/de/legal/privacy
https://zeeg.me/de/legal/gdpr

Ticket Sales

Eventbrite

To enable you to book tickets for events on our website, we use the functions of Eventbrite. This service is provided by Eventbrite Inc., Delaware, 155 5th Street, Floor 7, San Francisco, CA 94103, USA.

When booking a ticket via Eventbrite, all data relevant to the booking is collected by Eventbrite. In addition to this data, metadata is also collected. Eventbrite may set cookies on our website to collect and store data. These cookies are only set with your consent, which you can withdraw at any time. The legal basis for this is Art. 6 (1) (a) GDPR and § 25 (1) TDDDG, insofar as your consent includes access to information on your device or the storage of cookies within the meaning of the TDDDG.

In addition, the legal basis for the use of Eventbrite is Art. 6 (1) (b) GDPR, as the sale of tickets is part of our service offering. The data will be stored until you request its deletion, withdraw your consent to storage, or the purpose of storage no longer applies. Mandatory statutory retention obligations remain unaffected.

For data transfers to the USA, the EU Commission’s Standard Contractual Clauses (SCCs) apply.

Further information can be found here:
https://www.eventbrite.de/support/articles/de/Troubleshooting/datenschutzrichtlinien-von-eventbrite?lg=de

Cookie-Consent-Tool

CCM19

To ensure that only cookies with a valid legal basis are set on our website, we use the Consent Management Tool CCM19, provided by Papoo Software & Media GmbH, Auguststr. 4, 53229 Bonn, Germany.

This service is used to obtain and document the website visitor’s consent to the storage of certain cookies in their browser or to the use of specific technologies in compliance with data protection regulations. When you visit this website, the consent you have given—or the withdrawal of such consent—is stored in your browser as a CCM19 cookie. For this purpose, a connection is established to the CCM19 servers.

The legal basis is Art. 6 (1) (c) GDPR. CCM19 is used to obtain the legally required consent for the use of cookies.

The collected data will be stored until the website visitor requests its deletion, CCM19 deletes it itself, or the purpose of storage no longer applies. Mandatory statutory retention periods remain unaffected. 

Website Builder System

We use Squarespace, a service provided by Squarespace Ireland Limited, Le Pole House, Ship Street Great, Dublin 8, D08 N12C, Ireland, to build and operate our website.

Squarespace enables us to design and provide our website. In doing so, technically necessary cookies are set, for example, for secure browsing, to prevent misuse (e.g., Cross-Site Request Forgery), and to ensure the secure processing of transactions.

The legal basis for this is Art. 6 (1) (f) GDPR (legitimate interest in providing a user-friendly and secure website). Where cookies or similar technologies are used for analytics or marketing purposes, this is done solely on the basis of your consent (Art. 6 (1) (a) GDPR).

Squarespace may also process personal data in the USA. Risks associated with this cannot be completely ruled out (e.g., access by U.S. authorities). The transfer takes place on the basis of the EU Commission’s Standard Contractual Clauses (SCCs), which we have concluded with Squarespace in accordance with Art. 46 GDPR.

For more information, please refer to Squarespace’s Privacy Policy:
https://www.squarespace.com/privacy

Newsletter

Mailerlite
We use MailerLite to provide our newsletter. This service is offered by MailerLite Limited, 38 Mount Street Upper, Dublin 2, D02 PR89, Ireland.
Through this service, the distribution of newsletters can be organized and analyzed. The data entered in order to receive the newsletter is stored on MailerLite’s servers.

With the help of MailerLite, interactions with the newsletter can be analyzed. Conversion rates can also be determined, and newsletter users can be categorized in order to adapt the newsletter to different target groups.
You can object to this analysis at any time via the link included in each newsletter message.

The legal basis for processing is Art. 6 (1) (a) GDPR and § 25 (1) TDDDG. Consent can be revoked at any time by unsubscribing from the newsletter. The lawfulness of processing carried out before the revocation remains unaffected.

In addition, we use further email services from MailerLite to fulfill our contractual obligations and for customer management. The legal basis for this is Art. 6 (1) (b) GDPR.

The data will be deleted at the end of the contractual relationship between us and MailerLite, unless the website visitor withdraws their consent beforehand. In this case, the data will be removed from the distribution list.

Furthermore, after unsubscribing from the newsletter, the email address will be stored separately on a blacklist for an indefinite period. The legal basis for this is Art. 6 (1) (f) GDPR. This serves both the interest of the website visitor and our legitimate interest in operating the newsletter in compliance with legal requirements.

Further details:
https://www.mailerlite.com/features
https://www.mailerlite.com/legal/privacy-policy

Analytics and Tracking Tools

Mailerlite

We use the analysis and tracking service provided by MailerLite, offered by UAB ‘MailerLite’, 38 Mount Street Upper, Dublin, Ireland, on our website.

MailerLite provides a platform for creating and analysing websites and landing pages. For this purpose, personal data such as email addresses, IP addresses, usage data and technical information such as browser and device type are processed.

The purpose of data processing is to analyse user behaviour in order to optimise marketing measures. The legal basis for data processing is your consent in accordance with Art. 6 (1) (a) GDPR.

MailerLite may set cookies to track user behaviour on the website and support analysis. These cookies are only set with your consent. The legal basis for setting cookies is Art. 6 (1) lit. a GDPR.

No personal data is transferred to third countries, as the data is processed within the EU. The data is stored until the user unsubscribes from the newsletter or revokes their consent.

Further information on data processing can be found at:

https://www.mailerlite.com/legal/privacy-policy.

Social Media Integrations

Instagram

This website integrates elements of the social network Instagram, provided by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

When the social media element is activated, a direct connection is established between the visitor’s browser and Instagram’s servers, and the visitor’s IP address is transmitted to Instagram. If the visitor has a user account, their visit to this website may be linked to that account. As the website operator, we have no knowledge of the content of the data transmitted.

The legal basis for this processing is Art. 6 (1) (a) GDPR and § 25 (1) TDDDG. Consent may be withdrawn at any time.

Where personal data is collected on this website using Facebook or Instagram and forwarded to Meta, both the website operator and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are joint controllers pursuant to Art. 26 GDPR. This joint responsibility is limited solely to the collection and transmission of the data to Facebook/Instagram. The agreement on joint processing can be found here:

https://www.facebook.com/legal/controller_addendum

The website operator is responsible for providing privacy information and for the lawful integration of the Instagram tool on this website. Facebook/Instagram is responsible for the data security of its products. Consequently, data subject rights with respect to data processed by Facebook/Instagram must be exercised directly with Facebook/Instagram.

For data transfers to the USA, the EU Commission’s Standard Contractual Clauses (SCC) apply.

Further details:

• EU Data Transfer Addendum

• Facebook Help

• Facebook Privacy Policy

• Instagram Privacy Policy

Pinterest

This website integrates elements of the social network Pinterest, provided by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

When the social media element is activated, a direct connection is established between the visitor’s browser and Pinterest’s servers in the USA. The visitor’s IP address, browser type and settings, date and time of the request, and cookies are transmitted to Pinterest. If the visitor has a user account, their visit to this website may be linked to that account. As the website operator, we do not obtain any knowledge of the content of the transmitted data.

The legal basis for this processing is Art. 6 (1) (a) GDPR and § 25 (1) TDDDG. Consent may be withdrawn at any time.

Further details can be found in Pinterest’s Privacy Policy:
https://policy.pinterest.com/privacy-policy

Social Media Profiles

In addition to our website, we are also present on social networks. Here, we aim to present our company and provide opportunities for you to get in touch with us. We also use these platforms to display advertisements and job postings.

Below, we provide information about which data we and the respective social network process when you visit and interact with our profiles.

Pinterest

We operate a Pinterest profile. Pinterest is provided by Pinterest Europe Ltd., Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.

Joint Responsibility

We are jointly responsible with Pinterest for our profile. The underlying joint controlling agreement can be viewed here:
https://business.pinterest.com/de/pinterest-advertising-services-agreement/rest-of-apac/

Pinterest’s Data Protection Officer can be contacted here:
https://help.pinterest.com/de/data-protection-officer-contact-form

Data Processing by Pinterest

When you visit our Pinterest page, Pinterest collects, among other things, log data that your browser automatically transmits when visiting the website (e.g., IP address, search history, browser type and settings, date and time of the request, etc.). Device information is also processed (e.g., device type, operating system). Further information can be found here:

• Technical Information We Collect

• Pinterest Privacy Policy

Pinterest may also set cookies. The data processed through these cookies may be partially linked to the user’s account. Further information can be found here:
https://policy.pinterest.com/de/cookies

Data Processing by Us

When Pinterest users communicate with us via our Pinterest profile, we receive the respective user message (including their Pinterest username). We also process comments posted by users. Our data processing serves the purpose of presenting our content on Pinterest and communicating with users.

The legal basis for this is Art. 6 (1) (f) GDPR, as we have a legitimate interest in presenting relevant information to interested users and communicating with them.

On our Pinterest profile, we use the Pinterest Analytics feature, which allows us to view statistical evaluations. The data we receive from Pinterest in this context consists solely of anonymous statistics about the visitors to our Pinterest profile. These statistics are not personal data and do not allow any conclusions to be drawn about individual users.

Storage Duration

In connection with our Pinterest profile, we only store the messages we receive when Pinterest users communicate with us via our Pinterest profile. These messages are deleted at the latest after the statutory retention period expires.

The respective storage duration by Pinterest is described in their privacy policy: https://policy.pinterest.com/de/privacy-policy.

Third-Party Content

Google Fonts

We have integrated Google Fonts locally on our server. Therefore, no data is transmitted to Google despite their use.

Audio and Video Conferences – Zoom

For communication with clients, we use Zoom, an online conferencing tool. This service is provided by Zoom Communications, Inc., 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA.

When communicating via this tool through video or audio conferences, personal data is processed by both us and the service provider. The data collected includes all information you provide when using the tool. Additionally, metadata regarding the conference is processed, as well as technical information required for the functionality of online communication. Furthermore, all files shared within the tool are stored on the provider’s servers.

Zoom may also set cookies. These cookies are only set with your consent, which can be revoked at any time. The legal basis for this is Art. 6 (1) (a) GDPR.

In addition, the legal basis for data processing by Zoom is Art. 6 (1) (b) GDPR, as the communication is related to the performance of a contract or is necessary to fulfill pre-contractual obligations. This tool is also used to facilitate communication with our company, which constitutes a legitimate interest under Art. 6 (1) (f) GDPR.

Data is stored until the user requests deletion, withdraws consent, or the purpose for storage no longer applies. Cookies remain on the device until the user deletes them. Mandatory statutory retention periods remain unaffected.

For data transfers to the USA, the EU Commission’s Standard Contractual Clauses (SCC) apply.

Further information:
https://zoom.us/de-de/privacy.html

Google Meet

For communication with clients, we use Google Meet, an online conferencing tool. This service is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

When communicating via this tool through video or audio conferences, personal data is processed by both us and the service provider. The data collected includes all information you provide when using the tool. Additionally, metadata regarding the conference is processed, as well as technical information required for the functionality of online communication. Furthermore, all files shared within the tool are stored on the provider’s servers.

Google Meet may also set cookies. These cookies are only set with your consent, which can be revoked at any time. The legal basis for this is Art. 6 (1) (a) GDPR.

In addition, the legal basis for data processing by Google Meet is Art. 6 (1) (b) GDPR, as the communication is related to the performance of a contract or is necessary to fulfill pre-contractual obligations. This tool is also used to facilitate communication with our company, which constitutes a legitimate interest under Art. 6 (1) (f) GDPR.

Data is stored until the user requests deletion, withdraws consent, or the purpose for storage no longer applies. Cookies remain on the device until the user deletes them. Mandatory statutory retention periods remain unaffected.

Further information:
https://policies.google.com/privacy?hl=en

Your Rights

Finally, we want to provide you with detailed information about your rights and how you will be informed about changes in data protection requirements.

Right of Access (Art. 15 GDPR)
You have the right to request information on whether personal data concerning you is being processed. If this is the case, you can request further details on how the data is processed. A detailed list is provided in Art. 15 (1) (a)–(h) GDPR.

Right to Rectification (Art. 16 GDPR)
This right includes the correction of inaccurate data and the completion of incomplete personal data.

Right to Erasure (Art. 17 GDPR)
The so-called “right to be forgotten” allows you to request the deletion of personal data under certain conditions. This generally applies if the purpose of data processing has ceased, if consent has been withdrawn, or if the initial processing was unlawful. A detailed list of reasons can be found in Art. 17 (1) (a)–(f) GDPR. This “right to be forgotten” also corresponds with the obligation of the controller under Art. 17 (2) GDPR to take reasonable measures to ensure general deletion of the data.

Right to Restriction of Processing (Art. 18 GDPR)
This right is subject to the conditions outlined in Art. 18 (1) (a)–(d) GDPR.

Right to Data Portability (Art. 20 GDPR)
This establishes the basic right to receive your own data in a common format and to transmit it to another controller. This only applies to data processed based on consent or contract under Art. 20 (1) (a)–(b) GDPR and only where technically feasible.

Right to Object (Art. 21 GDPR)
You generally have the right to object to the processing of your personal data. This is particularly relevant when your interest in objecting outweighs the legitimate interest of the controller or if the processing relates to direct marketing and/or profiling.

Right to Individual Decision (Art. 22 GDPR)
You generally have the right not to be subject to a decision based solely on automated processing (including profiling) that has legal effects or similarly significantly affects you. This right is, however, subject to the exceptions and limitations described in Art. 22 (2) and (4) GDPR.

Further Rights
The GDPR includes extensive rights to inform third parties about whether and how you have exercised rights under Art. 16, 17, 18 GDPR, insofar as this is possible and reasonable.

You also have the right to withdraw any consent you have given under Art. 7 (3) GDPR at any time. The legality of processing carried out up to that point is not affected by the withdrawal.

Additionally, you have rights under §§ 32 ff. BDSG (Federal Data Protection Act, Germany), which largely overlap with the rights described above.

Right to Lodge a Complaint (Art. 77 GDPR)
You also have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates this regulation.

What if GDPR is repealed or other changes occur?

The current version of this privacy policy is dated August 21, 2025. From time to time, it may be necessary to adjust the content of the privacy policy to reflect actual and legal changes. We therefore reserve the right to change this privacy policy at any time. The revised version will be published in the same location, and we recommend that you read the privacy policy regularly.

Created with kind support from Dieter macht den Datenschutz.