Impressum
Barbara Bendel
Kruegerstrasse 20
10439 Berlin
Represented by:
Barbara Bendel
Contact:
M: +1 467 553 8119
M: +49 171 74 50 989
E: mail@barbara-bendel.com
| Data Protection |
| 1. Privacy Overview |
| General Notes |
| The following information provides a simple overview of how your personal data is handled when you visit this website. Personal data is any information that can be used to personally identify you. For detailed information on data protection, please refer to our privacy policy provided below this text. |
| Data collection on this website. |
| Who is responsible for data collection on this website? |
| The data processing on this website is carried out by the website operator. You can find their contact details in the section „Information on the responsible party“ in this privacy policy. |
| How do we collect your data? |
| Your data is collected in part by you providing it to us. For example, this could include data you enter into a contact form. |
| Other data is collected automatically or with your consent when you visit the website through our IT systems. This primarily includes technical data (e.g., internet browser, operating system, or the time of the page visit). The collection of this data occurs automatically as soon as you enter this website. |
| What do we use your data for? |
| Some of the data is collected to ensure the error-free provision of the website. Other data may be used to analyze your user behavior. If contracts are concluded or initiated through the website, the transmitted data will also be processed for contract offers, orders, or other service requests. |
| What rights do you have regarding your data? |
| You have the right to obtain, at any time and free of charge, information about the origin, recipients, and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent for data processing, you can withdraw this consent at any time for the future. Additionally, you have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority. |
| For this purpose, as well as for any other questions regarding data protection, you can contact us at any time. |
| Analytics tools and third-party tools. |
| When you visit this website, your browsing behavior may be statistically analyzed. This is primarily done using so-called analytics programs. |
| Detailed information about these analytics programs can be found in the following privacy policy. |
| 2. Hosting |
| We host the content of our website with the following provider: Strato The provider is Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin, Germany (hereinafter referred to as “Strato”). When you visit our website, Strato collects various log files, including your IP addresses. For more information, please refer to Strato’s privacy policy: 👉 https://www.strato.de/datenschutz/ The use of Strato is based on Art. 6(1)(f) of the GDPR. We have a legitimate interest in ensuring the most reliable presentation of our website possible. If consent has been requested, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) of the German TDDDG (Telecommunications-Digital Services Data Protection Act), insofar as the consent includes the storage of cookies or access to information on the user’s end device (e.g., device fingerprinting) as defined by the TDDDG. Consent may be withdrawn at any time. Data Processing Agreement We have entered into a data processing agreement (DPA) with the above-mentioned provider. This is a legally required contract under data protection law that ensures that the provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR. |
| 3. General information and Obligations |
| Data Protection |
| The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy policy. When you use this website, various personal data will be collected. Personal data is information that can be used to identify you personally. This privacy policy explains which data we collect and how we use it. It also explains how and for what purpose this happens. We would like to point out that data transmission over the internet (e.g., communication via email) may have security vulnerabilities. Complete protection of data from third-party access is not possible. Note regarding the responsible party The responsible party for data processing on this website is: Barbara Bendel Kruegerstrasse 20, 10439 Berlin Phone: +49 1717450989 Email: info@barbara-bendel.com The responsible party is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data (e.g., names, email addresses, etc.). |
| Retention Perion |
| Unless a more specific storage period is stated within this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you make a legitimate request for deletion or withdraw consent for data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in the latter case, deletion will occur once these reasons no longer apply. |
| Geleral information on the legal Basis for Data Protection on this Website |
| If you have consented to data processing, we process your personal data based on Art. 6(1)(a) of the GDPR or Art. 9(2)(a) of the GDPR, if special categories of data are processed under Art. 9(1) of the GDPR. In the case of explicit consent to the transfer of personal data to third countries, data processing is also carried out based on Art. 49(1)(a) of the GDPR. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), data processing is additionally based on § 25(1) of the TDDG. Consent can be revoked at any time. If your data is necessary for the performance of a contract or for the execution of pre-contractual measures, we process your data based on Art. 6(1)(b) of the GDPR. Furthermore, we process your data if necessary for compliance with a legal obligation based on Art. 6(1)(c) of the GDPR. Data processing may also occur based on our legitimate interest under Art. 6(1)(f) of the GDPR. The relevant legal grounds for each case are detailed in the following paragraphs of this privacy policy. |
| Recipient of Personal Data |
| As part of our business operations, we collaborate with various external entities. In some cases, it is necessary to transfer personal data to these external entities. We only share personal data with external entities if this is required to fulfill a contract, if we are legally obligated to do so (e.g., transferring data to tax authorities), if we have a legitimate interest under Art. 6(1)(f) of the GDPR in sharing the data, or if another legal basis permits the data transfer. When using processors, we only transfer personal data of our customers based on a valid contract for data processing. In the case of joint processing, a contract for joint processing is concluded. |
| Withdrawal of your consent to data processing |
| Many data processing operations are only possible with your explicit consent. You can withdraw any consent previously given at any time. The legality of the data processing carried out up until the withdrawal remains unaffected by the withdrawal. |
| Right to object to data collection in special cases and to direct marketing (Art. 21 GDPR) |
| If the data processing is based on Article 6(1)(e) or (f) GDPR, you have the right to object at any time to the processing of your personal data for reasons related to your particular situation; this also applies to profiling based on these provisions. You can find the specific legal basis for the processing in this privacy statement. If you object, we will no longer process your affected personal data, unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing is necessary for the establishment, exercise, or defense of legal claims (objection under Article 21(1) GDPR). If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing purposes; this also applies to profiling, as far as it is related to such direct marketing. If you object, your personal data will no longer be used for direct marketing purposes (objection under Article 21(2) GDPR). |
| Right to lodge a complaint with the competent supervisory authority |
| In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, their place of work, or the place of the alleged infringement. The right to lodge a complaint is without prejudice to any other administrative or judicial remedies. |
| Right to Data protability |
| You have the right to have data that we process automatically based on your consent or in fulfillment of a contract handed over to you or to a third party in a commonly used, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done to the extent that it is technically feasible. |
| Right to accessm rectificatiohn and erasure |
| You have the right at any time, in accordance with the applicable legal provisions, to obtain free information about your stored personal data, their origin and recipients, and the purpose of the data processing, and, if applicable, the right to correction or deletion of this data. You can contact us at any time regarding this or any further questions about personal data. |
| Right to restricion of processing |
| You have the right to request the restriction of the processing of your personal data. You can contact us at any time to exercise this right. The right to restriction of processing exists in the following cases: If you dispute the accuracy of your personal data stored with us, we usually need time to verify this. During the verification period, you have the right to request the restriction of the processing of your personal data. If the processing of your personal data was unlawful, you may request the restriction of processing instead of erasure. If we no longer need your personal data but you need it for the establishment, exercise, or defense of legal claims, you have the right to request the restriction of processing your personal data instead of erasure. If you have lodged an objection under Article 21(1) GDPR, a balancing of your and our interests must be carried out. As long as it is not clear whose interests prevail, you have the right to request the restriction of the processing of your personal data. If you have restricted the processing of your personal data, these data – apart from storage – may only be processed with your consent or for the establishment, exercise, or defense of legal claims, or to protect the rights of another natural or legal person, or for reasons of important public interest of the European Union or a Member State. SSL or TLS encryption |
| SSL (Secure Sockets Layer) or TLS (Transport Layer Security) encryption |
| This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the website operator. You can recognize an encrypted connection by the fact that the address bar of the browser changes from „http://“ to „https://“ and by the lock symbol in your browser bar. When SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties. |
| Objection to advertising emails |
| The use of contact information published in the context of the Impressum obligation for the purpose of sending unsolicited advertisements and informational materials is hereby objected to. The operators of this website expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, such as spam emails. |
| 4. Data collection on this website |
| Cookies |
| Our website uses so-called “cookies.” Cookies are small data packets that do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (persistent cookies) on your device. Session cookies are automatically deleted after your visit ends. Persistent cookies remain stored on your device until you delete them yourself or they are automatically deleted by your web browser. Cookies may originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services provided by third-party companies within websites (e.g., cookies for handling payment services). Cookies serve various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., shopping cart functions or displaying videos). Other cookies may be used to analyze user behavior or for advertising purposes. Cookies that are required for carrying out the electronic communication process, for providing certain functions you have requested (e.g., the shopping cart function), or for optimizing the website (e.g., cookies to measure web traffic) are stored on the basis of Art. 6(1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in the storage of necessary cookies to ensure the technically flawless and optimized provision of its services. If consent for the storage of cookies and similar recognition technologies has been requested, the processing is carried out exclusively based on this consent (Art. 6(1)(a) GDPR and § 25(1) TDDDG); consent may be revoked at any time. You can configure your browser to inform you about the setting of cookies, allow cookies only in individual cases, exclude the acceptance of cookies for specific cases or in general, and enable the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited. You can find which cookies and services are used on this website in this privacy policy. |
| Contact Form |
| If you send us inquiries via the contact form, the information you provide in the form, including the contact details you enter there, will be stored by us for the purpose of processing your inquiry and in case of follow-up questions. We do not share this data without your consent. The processing of this data is based on Article 6(1)(b) GDPR if your request is related to the performance of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on our legitimate interest in the effective processing of the inquiries addressed to us (Article 6(1)(f) GDPR) or on your consent (Article 6(1)(a) GDPR), if it has been requested; consent can be withdrawn at any time. The data you enter in the contact form will remain with us until you request its deletion, revoke your consent to storage, or the purpose for the data storage no longer applies (e.g., after your inquiry has been fully processed). Mandatory legal provisions – in particular, statutory retention periods – remain unaffected. |
| Inquiry by email, phone, or fax |
| If you contact us by email, telephone, or fax, your inquiry, including all personal data resulting from it (e.g., name, inquiry), will be stored and processed by us for the purpose of handling your request. We do not disclose this data without your consent. The processing of this data is based on Article 6(1)(b) GDPR if your inquiry is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, processing is based on our legitimate interest in the effective handling of inquiries directed to us (Article 6(1)(f) GDPR) or on your consent (Article 6(1)(a) GDPR), if requested; consent can be withdrawn at any time. The data you send to us via contact inquiries will remain with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after the completion of your request). Mandatory legal provisions – in particular statutory retention periods – remain unaffected. |
| 5. Social Media |
| This website integrates elements of the social network Facebook. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. According to Facebook, the collected data is also transferred to the USA and other third countries. An overview of Facebook’s social media plugins can be found here: https://developers.facebook.com/docs/plugins/?locale=de_DE When the social media element is active, a direct connection is established between your device and the Facebook server. In this process, Facebook receives information that you have visited this website with your IP address. If you click the Facebook “Like” button while logged into your Facebook account, you can link the content of this website to your Facebook profile. This enables Facebook to associate your visit to this website with your user account. We would like to point out that, as the provider of this website, we have no knowledge of the content of the transmitted data or how it is used by Facebook. Further information can be found in Facebook’s privacy policy: https://de-de.facebook.com/privacy/explanation The use of this service is based on your consent under Art. 6(1)(a) GDPR and § 25(1) of the TDDDG (German Telecommunications-Telemedia Data Protection Act). You may withdraw your consent at any time. Where personal data is collected on our website using the tool described here and transmitted to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, are jointly responsible for this data processing (Art. 26 GDPR). This joint responsibility is limited exclusively to the collection of the data and its transmission to Facebook. Any subsequent processing by Facebook is not part of the joint responsibility. Our mutual obligations have been laid out in a joint controller agreement. The wording of this agreement can be accessed at: https://www.facebook.com/legal/controller_addendum According to this agreement, we are responsible for providing data protection information when using the Facebook tool and for the data protection-compliant integration of the tool on our website. Facebook is responsible for the data security of its products. Data subject rights (e.g., access requests) regarding data processed by Facebook can be asserted directly with Facebook. If you assert data subject rights with us, we are obliged to forward your request to Facebook. Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses (SCC). Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum https://de-de.facebook.com/help/566994660333381 https://www.facebook.com/policy.php Meta is certified under the EU-U.S. Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the United States to ensure compliance with European data protection standards for data processing in the USA. Every company certified under the DPF commits to these standards. Further information can be found here: https://www.dataprivacyframework.gov/participant/4452 |
| This website includes features provided by the social network Instagram. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. When an Instagram social media element is active, a direct connection is established between your device and Instagram’s servers. In doing so, Instagram receives information such as your IP address and learns that you have visited this website. If you are logged into your Instagram account, you may link content from this website to your Instagram profile by clicking the relevant button. This allows Instagram to associate your visit to our site with your user account. Please note that we, as the website operator, have no influence over the scope of data collected by Instagram or how it is used. For more details, please refer to Instagram’s privacy policy: 👉 https://privacycenter.instagram.com/policy Legal basis: The use of Instagram is based on your consent under Art. 6(1)(a) GDPR and § 25(1) TDDDG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g. device fingerprinting). You may revoke your consent at any time. Joint Controllership (Art. 26 GDPR): Where personal data is collected via the Instagram tools integrated on our site and transferred to Meta (Instagram/Facebook), we are considered joint controllers together with Meta Platforms Ireland Limited. This joint responsibility is limited solely to the collection and transmission of data. The subsequent processing of this data is the sole responsibility of Meta. The agreement on joint processing pursuant to Art. 26 GDPR is available at: 👉 https://www.facebook.com/legal/controller_addendum According to this agreement, we are responsible for providing privacy notices and for the lawful implementation of the Instagram tool on our website. Meta is solely responsible for the security of Instagram products and their data processing. Data subject rights (e.g., access, erasure, rectification) concerning data processed by Instagram may be asserted directly with Instagram or with us. If you submit a request to us, we are obligated to forward it to Meta. Data transfers to the USA: Data transfers to the USA are based on the European Commission’s Standard Contractual Clauses and Meta’s certification under the EU-U.S. Data Privacy Framework (DPF). Further information is available here: https://www.facebook.com/legal/EU_data_transfer_addendum https://de-de.facebook.com/help/566994660333381 https://www.dataprivacyframework.gov/participant/4452 |
| 6. Analysis tools and advertising |
| WP Statistics |
| This website uses the analytics tool WP Statistics to statistically evaluate visitor traffic. The provider is Veronalabs, Tatari 64, 10134 Tallinn, Estonia 👉 https://veronalabs.com With WP Statistics, we can analyze the use of our website. The tool collects, among other things, log files (such as IP address, referrer, browser used, user origin, and search engine used), as well as actions performed by website visitors (e.g. clicks and page views). All data collected by WP Statistics is stored exclusively on our own server. The use of this analytics tool is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the anonymized analysis of user behavior in order to optimize both our website and our marketing. If corresponding consent has been requested (e.g. to store cookies or access device information such as device fingerprinting), processing is based solely on Art. 6(1)(a) GDPR and § 25(1) TDDDG, as far as the consent includes the storage of cookies or access to information on the user’s device within the meaning of the TDDDG. Consent may be withdrawn at any time. |
| 7. Newsletter |
| Newsletter Data |
| If you would like to receive the newsletter offered on this website, we require an email address from you, along with information that allows us to verify that you are the owner of the provided email address and that you consent to receiving the newsletter. No additional data is collected unless provided voluntarily. We use this data exclusively for sending the requested newsletter and do not share it with third parties. The processing of the data entered into the newsletter registration form is based solely on your consent (Art. 6(1)(a) GDPR). You may withdraw your consent to the storage of your data, email address, and its use for sending the newsletter at any time — for example, via the “unsubscribe” link in the newsletter. The legality of any data processing that has already occurred remains unaffected by the withdrawal. The data you provide for the purpose of receiving the newsletter will be stored by us (or our newsletter service provider) until you unsubscribe, after which it will be deleted from the mailing list. We reserve the right to delete or block email addresses from our newsletter list at our own discretion, if it is in our legitimate interest (Art. 6(1)(f) GDPR). Any data stored by us for other purposes remains unaffected by this. After you unsubscribe, your email address may be placed on a blacklist to prevent future mailings if this is necessary. The data in the blacklist is used solely for this purpose and is not merged with other data. This serves both your interest and our interest in complying with legal requirements for newsletter distribution (legitimate interest as per Art. 6(1)(f) GDPR). Blacklist entries are not time-limited. You may object to this storage if your interests outweigh our legitimate interest. |
| Newsletter sending to existing customers |
| If you order goods or services from us and provide your email address, this email address may be used by us for sending newsletters, provided that we inform you in advance. In such cases, the newsletter will only contain direct marketing for similar goods or services of our own. You can unsubscribe from this newsletter at any time. A corresponding link for unsubscription is included in every newsletter. The legal basis for sending the newsletter in this case is Art. 6(1)(f) GDPR in conjunction with § 7(3) UWG. After you unsubscribe from the newsletter mailing list, your email address may be stored on a blacklist by us to prevent future mailings to you. The data in the blacklist will only be used for this purpose and will not be merged with other data. This serves both your interest and our interest in complying with legal requirements for sending newsletters (legitimate interest as per Art. 6(1)(f) GDPR). The storage in the blacklist is not time-limited. You may object to this storage if your interests outweigh our legitimate interest. |
| 8. Plugins und Tools |
| YouTube with enhanced privacy |
| This website embeds videos from YouTube. The operator of the website is Google Ireland Limited („Google“), Gordon House, Barrow Street, Dublin 4, Ireland. When you visit one of the websites where YouTube videos are embedded, a connection to the YouTube servers is established. In this case, the YouTube server is informed about which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account. We use YouTube in extended privacy mode. Videos played in this mode, according to YouTube, are not used to personalize your browsing experience on YouTube. Ads shown in extended privacy mode are also not personalized. No cookies are set in extended privacy mode. Instead, so-called Local Storage elements are stored in the user’s browser, which, like cookies, contain personal data and can be used for recognition. Details about extended privacy mode can be found here: https://support.google.com/youtube/answer/171780. After activating a YouTube video, additional data processing activities may be triggered, over which we have no control. The use of YouTube serves the purpose of presenting our online offerings in an appealing way. This constitutes a legitimate interest under Art. 6(1)(f) GDPR. If appropriate consent was obtained, processing is carried out solely on the basis of Art. 6(1)(a) GDPR and § 25(1) TDDG, provided the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) under the TDDG. Consent can be withdrawn at any time. For more information on privacy at YouTube, you can refer to their privacy policy here: https://policies.google.com/privacy?hl=en. The company is certified under the „EU-US Data Privacy Framework“ (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards when processing data in the USA. Any company certified under the DPF is committed to adhering to these data protection standards. More information on this can be found here: https://www.dataprivacyframework.gov/participant/5780. |
| Google Maps |
| This site uses the Google Maps service. The provider of the service is Google Ireland Limited („Google“), Gordon House, Barrow Street, Dublin 4, Ireland. With this service, we can embed map materials on our website. To use the features of Google Maps, it is necessary to store your IP address. This information is usually transmitted to a Google server in the USA and stored there. The operator of this site has no influence over this data transfer. When Google Maps is enabled, Google may use Google Fonts to ensure consistent font display. When accessing Google Maps, your browser loads the necessary web fonts into its cache to display texts and fonts correctly. Using Google Maps is in the interest of presenting our online offerings in an appealing way and making it easy to find the locations listed on our website. This constitutes a legitimate interest in accordance with Art. 6(1)(f) GDPR. If appropriate consent has been obtained, processing is carried out solely on the basis of Art. 6(1)(a) GDPR and § 25(1) TDDG, provided the consent includes the storage of cookies or access to information on the user’s device (e.g., device fingerprinting) as per TDDG. Consent can be withdrawn at any time. The data transfer to the USA is based on the EU Commission’s standard contractual clauses. Details can be found here: https://privacy.google.com/businesses/gdprcontrollerterms/ and https://privacy.google.com/businesses/gdprcontrollerterms/sccs/. More information about the handling of user data can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=en. The company is certified under the „EU-US Data Privacy Framework“ (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the USA. Any company certified under the DPF is committed to adhering to these data protection standards. More information on this can be found here: https://www.dataprivacyframework.gov/participant/5780. |
| 9. Own Services |
| Google Drive |
| We have integrated Google Drive on this website. The provider is Google Ireland Limited („Google“), Gordon House, Barrow Street, Dublin 4, Ireland. Google Drive allows us to embed an upload area on our website where you can upload content. When you upload content, it is stored on Google Drive’s servers. When you visit our website, a connection is established with Google Drive, allowing Google Drive to determine that you have visited our site. The use of Google Drive is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in having a reliable upload area on their website. If appropriate consent has been obtained, the processing is carried out solely on the basis of Art. 6(1)(a) GDPR; consent can be withdrawn at any time. The company is certified under the „EU-US Data Privacy Framework“ (DPF). The DPF is an agreement between the European Union and the United States designed to ensure compliance with European data protection standards for data processing in the USA. Any company certified under the DPF is committed to adhering to these data protection standards. More information can be found here: https://www.dataprivacyframework.gov/participant/5780. Data Processing Agreement We have entered into a Data Processing Agreement (DPA) for the use of the above-mentioned service. This is a legally required contract that ensures the processing of our website visitors‘ personal data is only done based on our instructions and in compliance with the GDPR. Source: https://www.e-recht24.de |
