I. Fundamentals
Here we inform you about the processing of personal data when using our online presence. This online privacy policy therefore applies to our website https://dominik-ewers.de and https://de-solutions.net as well as to our profiles on social networks.
Personal data is any data that can be related to you personally, including your name,
address, email address, IP address, or user behavior.
With regard to the terms used, such as “processing,” “controller,” or
“data subject,” reference is made to the definitions in Art. 4 GDPR. In particular, the following can be found there:
“Personal data” means any information relating to an identified or identifiable natural person (the “data subject” or “person concerned”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data,
an online identifier, or one or more factors specific to the physical, physiological, genetic, mental,
economic, cultural, or social identity of that natural person (Art. 4 No. 1
GDPR).
“Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection,
recording, organization, structuring, storage, adaptation or alteration,
retrieval, consultation, use, disclosure by transmission, dissemination
or otherwise making available, alignment or combination, restriction,
erasure or destruction (Art. 4 No. 2 GDPR) .
“Controller” (or “responsible body”) is the natural or legal person,
authority, agency, or other body that, alone or jointly with others, decides on the purposes
and means of processing personal data (Art. 4 No. 7 GDPR).
“Processor” is a natural or legal person, public authority, agency, or other body that processes personal data on behalf of the controller (Art. 4 No. 8 GDPR).
In particular, the terms ‘processing’ and “personal data” are very broad, so that almost any handling of data can be understood as falling under them.
II. Who is the responsible body?
We are responsible for processing your data:
Dominik Ewers
Rüsingstraße 77
44894 Bochum, Germany
Tel.: +49 17656058001
Email: kontakt@dominik-ewers.de
III. How can you contact our data protection officer?
We are not legally obliged to appoint a data protection officer. If you have any questions about the processing of your data, please feel free to contact us at any time (see contact details above).
IV. Who is affected by data processing?
If, for example, you visit our website as a prospective customer, customer, supplier, service provider, or other visitor, your personal data will be processed in accordance with the statutory provisions and this declaration. All visitors to our website are collectively referred to as “users.”
V. What data do we collect from you and for what purposes or on what legal basis do we process it?
When you visit our website without registering or otherwise providing us with information, only the personal data that your browser transmits to our server will be processed. To our knowledge, the following data, among other things, will then be processed, which is technically necessary to display our website and to ensure its stability and security:
- IP address of the requesting computer
- Date and time of the request
- Name and URL of the retrieved file
- Access status / HTTP status code
- amount of data transferred
- Website from which the request originates (referrer URL)
- browser used
- operating system
The processing of this data in so-called log files is necessary in order to display our website and to ensure its stability and security.
If you also send us personal data, e.g. as part of an inquiry by email or via our contact form, we will also process the following data, depending on the information you provide:
- Contact details (e.g., name, address)
- Contact details (e.g., email address, phone number)
- Content data (e.g., text entries, photos, videos)
- Usage data (e.g., sites visited, access times)
- Communication/metadata (e.g., device information, IP addresses)
In addition, we may also process the following personal data for the purposes of providing contractual services, customer care, and marketing/advertising:
- Contract data (e.g., subject matter of the contract, term, customer number)
- Payment data (e.g., bank details, payment history)
We process your personal data when you visit our website for the following purposes:
- Providing the functions and content of our online offering
- Ensuring a smooth connection to our website
- Ensuring comfortable use of our website
- Evaluation and assurance of system security and stability, as well as general security measures
- Responding to any contact requests or communicating with you
- other administrative purposes
- Provision of contractual services
- customer service
Unless we specify a specific legal basis in this privacy policy, the following applies to the processing of your personal data: The legal basis for obtaining consent is Art. 6 (1) (a) and Art. 7 GDPR. The legal basis for data processing for the fulfillment of our services and the implementation of (pre-)contractual measures, as well as for the purpose of responding to any inquiries, is Art. 6 (1) lit. b GDPR.
Art. 6 (1) lit. c GDPR
is the legal basis for data processing for the fulfillment of legal obligations. If vital interests of the data subject or another
natural person require data processing, the legal basis is derived from Art. 6 (1) lit. d GDPR. Data processing to safeguard our legitimate interests is based on Art. 6 (1) lit. f GDPR. Our legitimate interest follows from the above-mentioned purposes of data collection.
If, in the course of processing your personal data, we disclose it to third parties, transfer it to them, or otherwise grant them access to the data, this will only be done on the basis of legal permission, insofar as you have consented to this, we are legally obliged to do so, or on the basis of our legitimate interests. Legal permission exists in particular if the disclosure of the data is necessary for the fulfillment of contractual obligations (e.g., for payment or shipping service providers). A legitimate interest may exist if we use data for direct marketing or to prevent fraud, or if you are a customer of ours. A legitimate interest may also exist, for example, when using web or email hosts, cloud providers, or similar service providers. Such service providers often act as so-called processors on the basis of a corresponding contract. They are also obliged to comply with data protection regulations and to guarantee this contractually. The legal basis for such processing relationships is Art. 28 GDPR.
VI. Who do we share your data with?
We regularly work with the following recipients in particular:
- shipping service provider
- credit institution
- email host
- web host
We carefully select external service providers. In the case of order processing relationships (Art. 28 GDPR), these companies are contractually bound to our instructions and are regularly monitored by us. More detailed information can be found in the following descriptions of the individual services.
VII. Is your data transferred to locations outside the EU?
The transfer of your personal data to third countries (i.e. outside the EU or the EEA) or to an international organization is only provided for in certain exceptional cases. Further information can be found in the following descriptions of the individual services.
If we process your personal data in a third country or have it processed by third parties, this will only be done if it is necessary to fulfill our (pre-)contractual obligations or on the basis of your consent, a legal obligation or our legitimate interests. Your personal data will only be processed in a third country if the specific requirements of Art. 44 ff. GDPR are met, unless there are legal or contractual permissions in individual cases. This means that data processing is carried out, for example, on the basis of special guarantees, such as the officially recognized determination of a level of data protection corresponding to that of the European Union or the observance of special, recognized contractual obligations (in particular the so-called “EU standard contractual clauses”).
VIII. How long do we process your data?
The duration of the storage of your personal data is regularly measured by existing statutory retention periods (e.g. under commercial or tax law). Unless otherwise stated below, your personal data will be routinely deleted after expiry of any relevant period, provided that it is no longer required for the performance or initiation of a contract, we no longer have a legitimate interest in further storage, and/or if you have not consented to further storage. In Germany, there are special retention periods in the following areas, among others:
- According to commercial law (6 years, e.g., for opening balance sheets, annual financial statements, accounting documents, etc.)
- in accordance with tax law (10 years for all documents relevant to tax law)
- According to AGG (6 months for documents of rejected applicants)
IX. What are your rights?
With regard to the processing of your personal data, you have the right to...
- Request information about your personal data processed by us. In particular, you can request information about the purposes of processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, deletion, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected by us, and the existence of automated decision-making, including profiling and, if applicable, meaningful information about its details (Art. 15 GDPR);
- to request the immediate correction of inaccurate or incomplete personal data stored by us (Art. 16 GDPR);
- to request the deletion of your personal data stored by us, unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defense of legal claims (Art. 17 GDPR);
- to request the restriction of the processing of your personal data if you dispute the accuracy of the data, the processing is unlawful, but you oppose its erasure and we no longer need the data, but you need it to assert, exercise, or defend legal claims, or you have objected to the processing pursuant to Art. 21 GDPR (Art. 18 GDPR);
- To receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format, or to request its transfer to another controller (data portability, Art. 20 GDPR);
- not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them (Art. 22 GDPR);
- to lodge a complaint with a supervisory authority (Art. 77 GDPR);
- for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you that is carried out on the basis of Article 6(1)(e) or (f); this also applies to profiling based on these provisions (Article 21 GDPR);
- To revoke your consent at any time. This means that we will no longer be permitted to continue processing data based on this consent in the future (Art. 7 (3) GDPR).
The latter three rights are explained in more detail below.
X. When and how can you object to data processing?
If your personal data is processed on the basis of legitimate interests pursuant to Art. 6
para. 1 sentence 1 lit. f GDPR or for direct marketing or profiling, you have the
right to object to the data processing at any time. This means that we will no longer be allowed to process your personal data in the future, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the data processing serves to assert, exercise, or defend legal claims.
However, the right to object only applies if there are reasons for this arising from your
particular situation or if your objection is directed against direct marketing. In the
latter case, you have a general right to object, which we will implement without you having to specify a particular
situation.
If you wish to exercise your right of objection, simply send us a message (see contact details above).
XI. When and how can you withdraw your consent?
You may revoke your consent at any time. This means that we will no longer be permitted to process your personal data based on this consent in the future. If you wish to exercise your right of revocation, simply send us a message (see contact details above).
XII. Who can you complain to?
With regard to our processing of your personal data, you have the right to lodge a complaint with a data protection supervisory authority. A list of state data protection supervisory authorities can be found, for example, at the following address: www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
XIII. When and why is it necessary to provide your data?
When using our contact form or sending us inquiries by email, you provide us with your personal data (e.g., name, address, or email address). The provision of your personal data is sometimes required by law (e.g., by tax law regulations). It may also be necessary for the implementation of (pre-)contractual measures. Failure to provide your personal data would mean that the contract with you could not be concluded or that your inquiry could not be answered. The provision of the following data is mandatory for the implementation of contracts or pre-contractual measures or for communication with us:
- First and last name
- address
- email address
- Customer data (e.g., customer number), if applicable
- text entries
- If applicable, telephone number (e.g., for queries or responding to customer inquiries)
Unless otherwise specified in this privacy policy, all other information is voluntary.
XIV. Is automated decision-making (e.g., profiling) used?
No automated decision-making, including profiling, takes place.
XV. How can you contact us?
You can contact us by mail, telephone, or email (see above).
If you contact us by e-mail or via our contact form, for example, we will automatically store the personal data you voluntarily provide to us for the purpose of processing your inquiry or contacting you. This data will not be passed on to third parties.
XVI. How do we secure our website?
Taking into account the state of the art, the costs of implementation, and the nature, the scope, context, and purposes of processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons, we take appropriate technical and organizational measures to ensure a level of security appropriate to the risk (Art. 32 GDPR). These measures include, in particular, ensuring the confidentiality, integrity, and availability of data. In addition, we have established business processes that ensure, in particular, the protection of data subjects' rights, the deletion of data, and the response to data breaches. Furthermore, we observe the principles of data protection law, including
data protection through technology design and privacy-friendly default settings
(privacy by design and privacy by default, Art. 25 GDPR).
For security reasons and to protect the transmission of your personal data and other confidential content, we use encrypted transmission via SSL certificate on our website. You can recognize this by the fact that “https” (instead of “http”) appears in the address bar of your browser, along with a lock symbol and a different color display.
XVII. What are cookies and how do we use them?
We use cookies on our website. These are small files that contain text information and are stored by your browser or saved on your device.
Transient (or temporary) cookies are automatically deleted when you close your browser. These include session cookies in particular. These store a specific identifier (the session ID), which allows your device to be recognized when you return to our website. This allows, for example, the contents of the virtual shopping cart of an online shop or the login status to be stored. Session cookies are deleted when you log out or close your browser.
Persistent (or permanent) cookies are automatically deleted after a certain period of time; the duration of storage varies depending on the cookie. This allows, for example, user information to be stored for reach measurement or marketing purposes, or a login status to be stored for a longer period of time.
For both temporary and permanent cookies, a distinction must be made between first-party cookies and third-party cookies. The former are set by the responsible body, the latter by third-party providers.
You can delete cookies at any time via the security settings in your browser or, for example, refuse to accept third-party cookies. If you wish to object to the use of cookies for online marketing purposes in general, you can do so with various services or providers, e.g. via the American website www.aboutads.info/choices or the European website www.youronlinechoices.com. Please note that you may then not be able to use all the functions of our website.
On our website, we may use temporary or permanent cookies, as well as first-party and
third-party cookies, e.g. to identify you for subsequent visits if
you have an account with us (otherwise you would have to log in again for each visit
). You will find further information on this below in our privacy policy.
XVIII. Google reCAPTCHA
To protect our contact forms from misuse and spam, we use Google reCAPTCHA (Version 3).
The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
reCAPTCHA analyzes the behavior of website visitors (e.g., mouse movements, dwell time, IP address, browser and device settings) to distinguish automated access from human users. This analysis takes place automatically in the background as soon as the website is accessed.
The data collected in this process is transmitted to Google and processed there.
The use of reCAPTCHA is based on Art. 6 (1) lit. f GDPR (legitimate interest), as we have a legitimate interest in protecting our website from automated spying and spam.
Further information about Google reCAPTCHA and Google's privacy policy can be found at:
https://policies.google.com/privacy
We currently only use cookies that are technically necessary to provide our services (e.g., to store your login status). The legal basis for the use of cookies is Art. 6 (1) (f) GDPR. If other cookies that are not technically necessary are used, we will obtain your consent (Art. 6 (1) (a) GDPR).
XIX. What about our profiles on social networks?
We operate the following profiles on social networks in order to get in touch with active users there and inform them about our services. When accessing the respective networks, the respective terms and conditions and privacy policies of the respective operators apply. Unless otherwise stated in our privacy policy, we only process user data if they contact us within the social networks, e.g. by posting on our profile pages or sending us messages.
Our social media profiles:
-Whatsapp
This English version is provided for informational purposes only and was generated using machine translation. In case of discrepancies or inaccuracies, the German version shall prevail and is legally binding.