Imprint & Privacy Policy

This blog is a privately run site without commercial character and is therefore not subject to the imprint requirement. But that's just for the sake of completeness.

Actually, everything has been said now. And this section could end right here and leave you clueless.

On the other hand, we don't want to have to deal with trolls or warning associations, and we also want to clarify a few things politely. For example, that you cannot buy links. Or that while we are happy to accept guest articles, we do review them critically (and if the content is bullshit, it goes back to you and we don't publish it, sorry).

So, here *Ta-dah* is the imprint (directly below) and our privacy policy (further down):

Imprint

Service Provider

Michael Heinrichs, c/o IMS Management GmbH, Dieselstr. 21, 46539 Dinslaken

Contact Options

Phone: +49.156.7867.1964
Email: Please use the Contact form

Dispute Resolution and Consumer Dispute Settlement

This blog is a privately run site without commercial character and is not aimed at consumers. We are neither obliged nor willing to participate in a dispute resolution procedure before a consumer arbitration board.

Liability and Copyright Notices

Disclaimer

The content of this online offering has been carefully prepared according to our knowledge at the time of publication, but serves only to satisfy your curiosity and your valued entertainment. Furthermore, it does not create any legally binding effect (or any other binding effect for you or us) and does not constitute a recommendation or instruction for action. We reserve the right to change or delete the content in whole or in part. All offers are non-binding, free of charge, and without obligation. You may sacrifice part of your lifetime, for example, to read this paragraph. You have every right to do so. But no one is forcing you.

Links to External Websites

The content of external websites to which we refer directly or indirectly is outside our area of responsibility and we do not adopt it as our own. We assume no responsibility for any content or disadvantages arising from the use of the information accessible on the linked websites. Warning: Operators of other websites can be mean :-)

Copyright and Trademark Rights

All content presented on this website, such as texts, photographs, graphics, brands, and trademarks, is protected by the respective intellectual property rights (copyrights, trademark rights). Use, duplication, etc. are subject to our rights or the rights of the respective authors or rights holders and are mentioned only for illustration or private observation, so please understand.

Notes on Legal Violations, Errors, or the Imminent End of the World

Should you notice any legal infringements within our website, we kindly ask you to to point them out to us. Upon becoming aware of and reviewing unlawful, incorrect, or misleading content and links, we will promptly remove or correct them. And if you happen to know anything substantial about the imminent end of the world (or something similar): we would also be pleased to receive your little hint.

Privacy Policy

Responsible Person

Michael Heinrichs, c/o IMS Management GmbH, Dieselstr. 21, 46539 Dinslaken

Overview of Processing

The following overview summarizes the types of data processed and the purposes of their processing, and refers to the data subjects.

Types of Data Processed

  • Inventory data.
  • Contact data.
  • Content data.
  • Usage data.
  • Meta, communication, and procedural data.
  • Log data.

Categories of data subjects

  • Communication partners.
  • Users.

Purposes of processing

  • Communication.
  • Security measures.
  • Organizational and administrative procedures.
  • Feedback.
  • Provision of our online services and user-friendliness.
  • Information technology infrastructure.

Relevant Legal Bases

Applicable legal bases according to the GDPR: In the following, you will receive an overview of the legal bases of the GDPR on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or registered office. Furthermore, if specific legal bases are relevant in individual cases, we will inform you of these in the data protection information.

  • Consent (Art. 6 para. 1 sentence 1 lit. a) GDPR) – The data subject has given their consent to the processing of personal data concerning them for one or more specific purposes.
  • Contract performance and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b) GDPR) – Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
  • Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

National data protection regulations in Germany: In addition to the data protection regulations of the GDPR, national data protection regulations in Germany apply. This includes, in particular, the Act for the Protection of Individuals with regard to the Processing of Personal Data and the Free Movement of Such Data (Federal Data Protection Act – BDSG). The BDSG contains, in particular, special provisions on the right of access, the right to erasure, the right to object, the processing of special categories of personal data, the processing for other purposes, and the transmission and automated individual decision-making, including profiling. Furthermore, state data protection laws of the individual federal states may also apply.

Note on the applicability of GDPR and Swiss DSG: These data protection notices serve to provide information according to the Swiss Data Protection Act (DSG) as well as the General Data Protection Regulation (GDPR). For this reason, we ask you to note that due to the broader spatial application and comprehensibility, the terms of the GDPR are used. In particular, instead of the terms "processing" of "personal data", "overriding interest", and "particularly sensitive personal data" used in the Swiss DSG, the terms "processing" of "personal data", "legitimate interest", and "special categories of data" used in the GDPR are employed. However, the legal meaning of the terms will continue to be determined according to the Swiss DSG within the scope of its applicability.

Safety measures

In accordance with the legal requirements, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances and purposes of processing as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, we implement appropriate technical and organizational measures to ensure a level of protection appropriate to the risk.

These measures include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access, input, disclosure, security of availability and its separation. Furthermore, we have established procedures that ensure the exercise of data subject rights, the erasure of data, and responses to data breaches. We also consider the protection of personal data from the outset in the development and selection of hardware, software and processes in accordance with the principle of data protection, through system design and through data protection-friendly default settings.

IP address anonymization: If IP addresses are processed by us or by the service providers and technologies used, and the processing of a complete IP address is not necessary, the IP address will be anonymized (also referred to as "IP masking"). Here, the last two digits, or the last part of the IP address after a dot, are removed or replaced by placeholders. The anonymization of the IP address is intended to prevent or significantly hinder the identification of a person based on their IP address.

Securing online connections with TLS/SSL encryption technology (HTTPS): To protect user data transmitted via our online services from unauthorized access, we use TLS/SSL encryption technology. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) are the cornerstones of secure data transmission on the internet. These technologies encrypt the information transmitted between the website or app and the user's browser (or between two servers), thereby protecting the data from unauthorized access. TLS, as the advanced and more secure version of SSL, ensures that all data transmissions comply with the highest security standards. When a website is secured by an SSL/TLS certificate, this is indicated by the display of HTTPS in the URL. This serves as an indicator to users that their data is being transmitted securely and encrypted.

International Data Transfers

Data processing in third countries: If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or if processing takes place in the context of using third-party services or disclosing or transferring data to other persons, entities, or companies, this will only be done in compliance with legal requirements. If the level of data protection in the third country has been recognized by an adequacy decision (Art. 45 GDPR), this serves as the basis for the data transfer. Otherwise, data transfers will only take place if the level of data protection is otherwise secured, in particular through standard contractual clauses (Art. 46 (2) lit. c) GDPR), explicit consent, or in the case of contractually or legally required transfers (Art. 49 (1) GDPR). Furthermore, we will inform you about the basis for third-country transfers with individual providers from third countries, with adequacy decisions taking precedence as the basis. Information on third-country transfers and existing adequacy decisions can be found in the information provided by the EU Commission: https://commission.europa.eu/law/law-topic/data-protection/international-dimension-data-protection_en?prefLang=de. Within the framework of the so-called "Data Privacy Framework" (DPF), the EU Commission has also recognized the level of data protection as secure for certain companies from the USA as part of the adequacy decision of July 10, 2023. You can find the list of certified companies as well as further information on the DPF on the website of the US Department of Commerce at https://www.dataprivacyframework.gov/ (in English). Within the scope of the privacy policy, we will inform you which service providers used by us are certified under the Data Privacy Framework.

General Information on Data Storage and Deletion

We delete personal data that we process in accordance with legal provisions as soon as the underlying consents are revoked or no further legal grounds for processing exist. This applies to cases where the original purpose of processing ceases to apply or the data is no longer needed. Exceptions to this regulation exist if legal obligations or special interests require longer retention or archiving of the data.

In particular, data that must be retained for commercial or tax law reasons, or whose storage is necessary for legal prosecution or the protection of the rights of other natural or legal persons, must be archived accordingly.

Our privacy policy contains additional information on data retention and deletion that applies specifically to certain processing operations.

If there are multiple specifications for the retention period or deletion deadlines for a piece of data, the longest period shall always apply.

If a period does not expressly begin on a specific date and is at least one year long, it automatically starts at the end of the calendar year in which the event triggering the period occurred. In the case of ongoing contractual relationships during which data is stored, the event triggering the period is the date on which the termination or other termination of the legal relationship becomes effective.

Data that is no longer needed for the originally intended purpose but is retained due to legal requirements or other reasons is processed by us exclusively for the reasons that justify its retention.

Further information on processing operations, procedures, and services:

  • Data retention and deletion: The following general retention periods apply under German law:
    • 10 years – Retention period for books and records, annual financial statements, inventories, management reports, opening balance sheets, as well as the work instructions and other organizational documents required for their understanding, accounting documents and invoices (§ 147 para. 3 in conjunction with para. 1 no. 1, 4 and 4a AO, § 14b para. 1 UStG, § 257 para. 1 no. 1 and 4, para. 4 HGB).
    • 6 years – Other business documents: received commercial or business letters, reproductions of commercial or business letters sent, other documents insofar as they are relevant for taxation, e.g. hourly wage slips, production cost statements, calculation documents, price tags, but also payroll records, insofar as they are not already accounting documents, and cash register tapes (§ 147 para. 3 in conjunction with para. 1 no. 2, 3, 5 AO, § 257 para. 1 no. 2 and 3, para. 4 HGB).
    • 3 years – Data required to consider potential warranty and damages claims or similar contractual claims and rights, as well as to process related inquiries, based on previous business experience and customary industry practices, are stored for the duration of the regular statutory limitation period of three years (§§ 195, 199 BGB).

Rights of Data Subjects

Rights of data subjects under the GDPR: As a data subject, you have various rights under the GDPR, which arise in particular from Art. 15 to 21 GDPR:

  • Right of objection: You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on Art. 6 para. 1 lit. e or f GDPR; this also applies to profiling based on these provisions. If personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing purposes; this also applies to profiling in so far as it is connected with such direct marketing.
  • Right of withdrawal for consents: You have the right to withdraw your consent at any time.
  • Right of access: You have the right to request confirmation as to whether data concerning you is being processed and to information about this data, as well as further information and a copy of the data in accordance with the legal requirements.
  • Right to rectification: In accordance with the legal requirements, you have the right to request the completion of data concerning you or the correction of incorrect data concerning you.
  • Right to erasure and restriction of processing: In accordance with the legal requirements, you have the right to request that data concerning you be deleted immediately, or alternatively, in accordance with the legal requirements, to request a restriction on the processing of the data.
  • Right to data portability: In accordance with the legal requirements, you have the right to receive data concerning you that you have provided to us in a structured, common, and machine-readable format, or to request its transfer to another controller.
  • Complaint to supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work, or the place of the alleged infringement, if you believe that the processing of personal data concerning you infringes the provisions of the GDPR.

Provision of the Online Offering and Web Hosting

We process user data to be able to provide them with our online services. For this purpose, we process the user's IP address, which is necessary to transmit the content and functions of our online services to the user's browser or end device.

  • Types of data processed: Usage data (e.g., page views and duration of stay, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions); Meta, communication, and process data (e.g., IP addresses, timestamps, identification numbers, persons involved); Log data (e.g., log files concerning logins or data retrieval or access times). Content data (e.g., textual or pictorial messages and posts, as well as information relating to them, such as details about authorship or time of creation).
  • Data subjects: Users (e.g., website visitors, users of online services).
  • Purposes of processing: Provision of our online services and user-friendliness; Information technology infrastructure (operation and provision of information systems and technical devices (computers, servers, etc.)). Security measures.
  • Storage and deletion: Deletion according to information in the section "General information on data storage and deletion".
  • Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Further information on processing operations, procedures, and services:

  • Provision of online services on rented storage space: For the provision of our online services, we use storage space, computing capacity, and software that we rent or otherwise obtain from a corresponding server provider (also called a "web host"); Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
  • Collection of access data and log files: Access to our online services is logged in the form of so-called "server log files". Server log files may include the address and name of the accessed websites and files, date and time of access, transferred data volumes, notification of successful access, browser type and version, user's operating system, referrer URL (the previously visited page), and usually IP addresses and the requesting provider. The server log files can be used on the one hand for security purposes, e.g., to prevent server overload (especially in the case of abusive attacks, so-called DDoS attacks), and on the other hand to ensure server utilization and stability; Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR). Deletion of data: Logfile information is stored for a maximum of 30 days and then deleted or anonymized. Data whose further storage is required for evidentiary purposes is excluded from deletion until the respective incident is finally clarified.
  • Email sending and hosting: The web hosting services we use also include sending, receiving, and storing emails. For these purposes, the addresses of recipients and senders, as well as further information regarding email transmission (e.g., the providers involved), and the content of the respective emails are processed. The aforementioned data may also be processed for the purpose of detecting SPAM. Please note that emails are generally not sent encrypted over the internet. While emails are usually encrypted during transit, they are not encrypted on the servers from which they are sent and received (unless a so-called end-to-end encryption method is used). Therefore, we cannot assume responsibility for the transmission path of emails between the sender and receipt on our server; Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).
  • Bunny.net CDN: We use a "Content Delivery Network" (CDN). A CDN is a service that helps to deliver content of an online service, especially large media files such as graphics or program scripts, faster and more securely using regionally distributed servers connected via the internet; Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Service provider: Bunny CDN, Cesta Komandanta, Staneta 4a, 1215 Medvode, Slovenia.; Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://bunny.net Privacy Policy: https://bunny.net/privacy/; Data Processing Agreement: https://bunny.net/gdpr. Basis for third-country transfers: Data Privacy Framework (DPF).
  • BerqWP: Our website uses the BerqWP plugin to improve speed and performance. When activated, BerqWP can provide static content such as images or scripts via a Content Delivery Network (CDN) from DigitalOcean Spaces. Additionally, if the Core Web Vitals monitoring function is activated, anonymous performance metrics can be collected to improve user experience. No personal data is collected or stored through this function; Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR)
  • ALL-INKL: Services in the area of providing IT infrastructure and related services (e.g., storage space and/or computing capacities); Service provider: ALL-INKL.COM – New Media Munich, Owner: René Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR); Website: https://all-inkl.com/; Privacy Policy: https://all-inkl.com/privacy-policy/. Data Processing Agreement: Provided by the service provider.
  • Cloudflare Turnstile:  We use Cloudflare Turnstile (hereinafter referred to as "Turnstile") on this website. The provider is Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA (hereinafter referred to as "Cloudflare"). Turnstile is used to check whether data input on this website (e.g., in the contact form) is made by a human or by an automated program. To do this, Turnstile analyzes the website visitor's behavior based on various characteristics. This analysis begins automatically as soon as the website visitor accesses a website with Turnstile enabled. For the analysis, Turnstile evaluates various information (e.g., IP address, duration of the website visitor's stay on the website, or mouse movements made by the user). The data collected during the analysis is forwarded to Cloudflare. The storage and analysis of the data are based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its web offerings from abusive automated scraping and SPAM. If appropriate consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user's end device (e.g., device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time. The data processing is based on standard contractual clauses, which here can be found. Further information on Cloudflare Turnstile can be found in the Privacy Policy by Cloudflare. The company has certification according to the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA, which is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. You can find further information on this from the provider.
  • Cloudflare: We use the Content Delivery Network (CDN) from Cloudflare Germany GmbH, Rosental 7, c/o Mindspace, 80331 Munich, Germany (Cloudflare) at least temporarily to increase the security and delivery speed of our website. This corresponds to our legitimate interest (Art. 6 Para. 1 lit. f GDPR). A CDN is a network of globally distributed servers capable of optimally delivering content to the website user. For this purpose, personal data may be processed in Cloudflare's server log files. Cloudflare is the recipient of your personal data and acts as a processor for us. This corresponds to our legitimate interest within the meaning of Art. 6 Para. 1 Sentence 1 lit. f GDPR to not operate a Content Delivery Network ourselves. You have the right to object to the processing. Whether the objection is successful must be determined as part of a balancing of interests. The processing of the data specified in this section is neither legally nor contractually required. The functionality of the website is not guaranteed without processing. Your personal data will be stored by Cloudflare for as long as it is necessary for the described purposes. Further information on objection and removal options with regard to Cloudflare can be found at Cloudflare DPA. Cloudflare has implemented compliance measures for international data transfers. These apply to all global activities where Cloudflare processes personal data of individuals in the EU. These measures are based on the EU Standard Contractual Clauses (SCCs). For more information, see here.

Blogs and Publishing Media

We use blogs or comparable means of online communication and publication (hereinafter "publication medium"). The data of readers are processed for the purposes of the publication medium only to the extent necessary for its presentation and communication between authors and readers, or for security reasons. Otherwise, we refer to the information on the processing of visitors to our publication medium within the scope of these privacy notices.

  • Types of data processed: Inventory data (e.g., full name, residential address, contact information, customer number, etc.); Contact data (e.g., postal and email addresses or phone numbers); Content data (e.g., textual or pictorial messages and posts, as well as information relating to them, such as authorship or creation time); Usage data (e.g., page views and dwell time, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and features). Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, persons involved).
  • Data subjects: Users (e.g., website visitors, users of online services).
  • Purposes of processing: Feedback (e.g., collecting feedback via online form). Provision of our online services and user-friendliness.
  • Storage and deletion: Deletion according to information in the section "General information on data storage and deletion".
  • Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Contact and Inquiry Management

When contacting us (e.g., by mail, contact form, email, phone, or via social media) as well as in the context of existing user and business relationships, the data of the inquiring persons are processed to the extent necessary to answer the contact requests and any requested measures.

  • Types of data processed: Inventory data (e.g., full name, residential address, contact information, customer number, etc.); Contact data (e.g., postal and email addresses or phone numbers); Content data (e.g., textual or pictorial messages and posts, as well as information relating to them, such as authorship or creation time); Usage data (e.g., page views and dwell time, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and features). Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, persons involved).
  • Data subjects: Communication partners.
  • Purposes of processing: Communication; organizational and administrative procedures; feedback (e.g., collecting feedback via online form). Provision of our online offering and user-friendliness.
  • Storage and deletion: Deletion according to information in the section "General information on data storage and deletion".
  • Legal bases: Legitimate interests (Art. 6(1)(f) GDPR). Fulfillment of contract and pre-contractual inquiries (Art. 6(1)(b) GDPR).

Further information on processing operations, procedures, and services:

  • Contact Form: When contacting us via our Contact form, by email, or other communication channels, we process the personal data transmitted to us to answer and process the respective request. This typically includes information such as name, contact details, and possibly other information that is communicated to us and is necessary for appropriate processing. We use this data exclusively for the stated purpose of contact and communication; Legal bases: Fulfillment of contract and pre-contractual inquiries (Art. 6(1)(b) GDPR), Legitimate interests (Art. 6(1)(f) GDPR).

Plugins and Embedded Features and Content

We integrate functional and content elements into our online offering, which are obtained from the servers of their respective providers (hereinafter referred to as "third-party providers"). These may include, for example, graphics, videos, or maps (hereinafter collectively referred to as "content").

The integration always requires that the third-party providers of this content process the IP address of the users, as they could not send the content to their browser without an IP address. The IP address is therefore necessary for the display of this content or functions. We endeavor to use only such content whose respective providers use the IP address solely for the delivery of the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" allow information, such as visitor traffic on the pages of this website, to be evaluated. The pseudonymous information may also be stored in cookies on the user's device and may include technical information about the browser and operating system, referring websites, visit time, and further information about the use of our online offering, but may also be linked with such information from other sources.

Information on legal bases: If we ask users for their consent to the use of third-party providers, the legal basis for data processing is the permission. Otherwise, user data will be processed on the basis of our legitimate interests (i.e., interest in efficient, economical, and user-friendly services). In this context, we would also like to refer you to the information on the use of cookies in this privacy policy.

  • Types of data processed: Usage data (e.g., page views and duration of stay, click paths, usage intensity and frequency, device types and operating systems used, interactions with content and functions). Meta, communication, and procedural data (e.g., IP addresses, timestamps, identification numbers, persons involved).
  • Data subjects: Users (e.g., website visitors, users of online services).
  • Purposes of processing: Provision of our online services and user-friendliness.
  • Storage and deletion: Deletion according to information in the section "General Information on Data Storage and Deletion". Storage of cookies for up to 2 years (Unless otherwise stated, cookies and similar storage methods can be stored on users' devices for a period of two years.).
  • Legal bases: Consent (Art. 6(1)(a) GDPR). Legitimate interests (Art. 6(1)(f) GDPR).

Further information on processing operations, procedures, and services:

  • Google Fonts (provided on own server): Provision of font files for a user-friendly display of our online services; Service provider: The Google Fonts are hosted on our server; no data is transmitted to Google. Legal bases: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f) GDPR).

Changes and Updates

We ask you to regularly inform yourself about the content of our privacy policy. We will adapt the privacy policy as soon as changes in the data processing carried out by us make this necessary. We will inform you as soon as the changes require an action on your part (e.g., consent) or any other individual notification.

If we provide addresses and contact information of companies and organizations in this privacy policy, please note that the addresses may change over time and we ask you to check the information before contacting us.

Created with free Datenschutz-Generator.de by Dr. Thomas Schwenke

Scroll to Top