Heart-centred Coach & Strategic Thinking Partner

Privacy Policy

01.12.2024

 

With this information, the responsible body referred to under section 1 ("we") informs the user of the website ("you" or "user") in accordance with Art. 13 and 14 of the General Data Protection Regulation (GDPR) about the collection and processing of personal data. At the same time, we inform you about it when we store information in the end device that you use when you access our websites or when we access information that is already stored in your end device. For the use of websites of other providers, to which reference is made, for example, via links, the data protection information there applies.

 

A General information

 

1 Responsible and data protection officer

1.1 Responsible data processor for this website is: Sandra Lacueva, Deep Space Coaching, Hafeninsel 46, 63067 Offenbach

1.2 You can reach the data protection officer by e-mail at contact@deep-space-coaching.com, or via the address in section 1.1. with the address addition "for the attention of the data protection officer".

1.3 Our website is hosted by ALL-INKL.COM (www.all-inkl.com), i.e. technically provided on web servers of this web host. The web host is a processor committed by us in accordance with Art. 28 GDPR.

 

2 Rights of data subjects

If personal data is collected by us from you, you have the following rights as "data subject":

2.1 Right to information

You can request information in accordance with Art. 15 GDPR about your personal data that we process.

2.2 Right to object

You have a right to object for the special reasons of Art. 21 (1) GDPR. We inform you about this separately from this information under "B".

2.3 Right to rectification

If the information concerning you is not (any longer) correct, you can request a correction in accordance with Art. 16 DS-GVO. If your data is incomplete, you can request completion.

2.4 Right to erasure

You can request the deletion of your personal data under the conditions of Art. 17 GDPR.

2.5 Right to restriction of processing

In the cases of Art. 18 GDPR, you have the right to request a restriction of the processing of your personal data ("blocking").

2.6 Right of appeal

If you believe that the processing of your personal data violates data protection law, you have the right to complain to a data protection supervisory authority of your choice in accordance with Art. 77 (1) GDPR.

2.7 Right to data portability

In the event that you have provided us with personal data in accordance with Art. 20 (1) GDPR, you have the right to have data that we process automatically processed on the basis of your consent or in fulfillment of a contract to yourself or to third parties in a structured, common and machine-readable format. The collection of data for the provision of the website and the storage of the log files (hereinafter section 3.1) are absolutely necessary for the operation of the website. They are therefore not based on consent in accordance with Art. 6 (1) (a) GDPR or on a contract in accordance with Art. 6 (1) (b) GDPR, but are justified under Art. 6 (1) (f) GDPR. The requirements of Art. 20 para. 1 DS-GVO are therefore not met in this respect.

 

3 Procedures: provision of the website and creation of log files

3.1 Which data is processed for what purpose?

Each time the contents of the website are accessed, the web server of our web host, where our website is stored, temporarily sends information (data) from the Internet browser of the calling computer or computer. Of the user's end device. This data may allow the user to be identified and is therefore personal data.

3.1.1 The following data is collected and stored by our web host:

  • IP address of the user,
  • Date and time of access to the website,
  • The protocol, e.g. HTTP,
  • The request method "Get" or "Post",
  • Content for the request resp. Indication of the retrieved file that has been transmitted to the user,
  • The access status (successful transmission, errors, etc.),
  • The respective amount of data transferred in bytes,
  • Incoming and outgoing data traffic ("traffic"),
  • A process identification number ("process ID"),
  • The duration for the web server to respond to the user's request,
  • The website from which the user's access took place,
  • The browser used by the user, the operating system, the interface, the language of the browser and the version of the browser software.

3.1.2 The temporary storage of this data of the user is necessary for the course of a website visit in order to enable delivery of the website. For this purpose, the user's IP address must necessarily be stored for the duration of the session (i.e. the website visit).

3.1.3A further storage of the IP address with the following data from the above-mentioned list beyond this purpose takes place in log files (logs). This is done so that our web host can ensure the functionality of the website and the security of the information technology systems.

3.2 On what legal basis is this data processed?

The data from section 3.1 will be collected and processed by our web host for the aforementioned temporary storage purpose and also for the further storage purpose in accordance with Art. 6 (1) (f) GDPR. This purpose also lies in the legitimate interest in data processing. This legitimate interest is the interest of our web host, but also our legitimate interest in a functional website.

3.3 Are there other recipients of the aforementioned data in addition to the person responsible?

As our processor, our web host has technical access to the data mentioned in 3.1.

3.4 How long will the data be stored?

The data from 3.1.1 will be deleted as soon as they are no longer necessary to achieve the purpose of their collection. When the website is provided, this is the case when the respective session has ended. The log files are stored for a maximum of 7 days, unless a security event requires longer storage.

3.5 Is there an obligation to provide?

You must provide the data from 3.1 to our web host. Otherwise, you cannot use our website technically and our web host cannot guarantee secure technical operation.

 

4 Data processing procedures

4.1 Data and information processing requiring consent

Insofar as we may only collect and process personal data with your consent, we inform you about this in our consent banner in the context of the consent dialog.

4.2 Use of e-mail address and contact form data based on legitimate interests

4.2.1 Which data is processed for which purpose?

If we provide you with an e-mail address and a contact form provided with input fields, this serves the purpose that you can get in touch with us. If you provide us with personal data, we will store it and process it for the purpose of contacting you.

4.2.2 On what legal basis is this data processed?

The data from section 4.2.1 will be processed on the basis of Art. 6 (1) (f) GDPR (legitimate interest of us as the responsible body). If your request is aimed at the conclusion of a contract, then Art. 6 (1) (b) GDPR is an additional legal basis (initiation, conclusion and execution of a contract).

4.2.3 Are there other recipients of the aforementioned data in addition to the person responsible?

As our processor, our web host has technical access to the data mentioned in 4.2.1.

4.2.4 How long will the data be stored?

The data from 4.2.1 will be deleted as soon as they are no longer necessary to achieve the purpose of their collection. For the personal data sent to us by e-mail or the contact form, this is the case if the respective correspondence with the user has ended and the storage is not yet necessary for other reasons. The conversation is over if it can be inferred from the circumstances that the facts concerned have been finally clarified.

4.2.5 Is there an obligation to provide?

You are not obliged to provide us with data from 4.2.1. You do not have to communicate with us.

4.3 Use of the session cookie "wbk_sid" based on legitimate interests

4.3.1 Which data is processed for what purpose?

As soon as you use the login form or the contact form, the session cookie "wbk_sid" is stored on your device by default. This cookie contains a long combination of numbers and letters ("ID"). The purpose of the cookie is that the user can be recognized as such in the event of a call for sending login data or contact information and can be distinguished from abusive users (e.g. SPAM bots).

4.3.2 On what legal basis is this data processed?

The information in this cookie represents personal data. However, the use of the cookie "wbk_sid" does not require data protection consent, because the data processing is necessary to safeguard the legitimate interests of the website operator and because the interests or fundamental rights and freedoms of the data subject, which require the protection of personal data, do not prevail. The legal basis for data processing is therefore Art. 6 para. 1 sentence 1 letter f DS-GVO.

4.3.3 Are there other recipients of the aforementioned data in addition to the person responsible?

As our processor, our web host has technical access to the data mentioned in 4.3.1.

4.3.4 How long will the data be stored?

If the user closes the browser, the cookie on the user's operating system is automatically deleted. It is therefore only valid for the duration of the visit to the websites (session cookie).

4.3.5 Is there an obligation to provide?

You are obliged to provide us with data from 4.3.1. Otherwise, you cannot use the login form or the contact form.

4.3.6 Consent to the use of the cookie?

Your consent to the storage of information about the cookie "wbk_sid" in your terminal device or our access to this information stored in your terminal device is dispensable, because storage and/or access are absolutely necessary so that you can use the login form or the contact form (§ 25 para. 2 no. 2 TTDSG).

 

5 Processing of information from your end devices

5.1 If we want to store information in the terminal that you use when visiting our websites and/or want to gain access to information that is already stored in your terminal equipment, we will ask you for your consent on the basis of clear and comprehensive information. This is done via a consent banner used by us (consent banner). We obtain the required consent before our access. Your consent is revocable by you at any time. However, your consent is not necessary for certain purposes mentioned in the law, so that we do not ask for it in these cases. On the one hand, consent is not required if the sole purpose of storing information in the end-user's end-device or the sole purpose of accessing information already stored in the end-user's end-user's device is the transmission of a message via a public telecommunications network. On the other hand, consent to the use of your terminal device is not required if the storage of information in the end-user's end device or access to information already stored in the end-user's end-user device is absolutely necessary so that we, as the provider of a telemedia service, can provide a telemedia service expressly requested by the user.

5.2 Such access to end devices is possible via certain technologies. The most well-known technology concerns cookies. Cookies are objects that can be stored in the Internet browser or by the Internet browser on the user's end device. If a user calls up a website, the server of the operator of the websites or a third party can read the cookie stored there via the user's operating system and consequently the information stored therein. A cookie can, but does not have to, contain a characteristic string that allows a unique identification of the user's browser when the website is accessed again.

5.3 Removal option: The user can prevent or restrict the installation of cookies by setting his browser accordingly. Already stored cookies can also be deleted at any time by the user via his browser. The settings for this depend on the respective browser. However, if the user prevents or restricts the installation of cookies, this may mean that not all functions of the website are fully usable. What applies to cookies also applies to other technologies that use the user's device.

5.4 Cookies requiring consent and similar technologies: Our consent banner (consent banner) on the website provides information on the cookies and similar technologies that require consent.

5.5 Cookies and similar technologies that do not require consent: For the cookies and similar technologies that do not require consent, we have internally documented that the consent according to § 25 para. 2 TTDSG is not required.

 

6 Consent banner (consent banner)

6.1 In order to be able to obtain a legally required consent for certain services or functions from you or to observe your revocation in this regard, a consent banner will be displayed (consent banner). Your consent or Non-consent concerns our use of your device (computer, laptop, smartphone, tablet) through cookies or similar technologies, with which information can be stored on your end device or read out by it. Your consent may also be necessary for the processing of personal data by us or third parties in accordance with Art. 6 para. 1 sentence 1 letter a DS-GVO, which is associated with your use of our websites. In certain cases, the law allows us to use your terminal device without consent and/or the subsequent processing of your personal data without your consent.

6.2 We use the consent banner to inform you about all services or Functions that require your consent before we use the service or function. The consent banner consists of an overview of all processing operations requiring consent and describes details in each case so that you as a user can estimate the meaning and scope of your consent. You can agree to each operation via a button/click area by activating it or rejecting this operation by deactivating it. There are three ways to decide:

- The choice of "make a selection and save" means that the user's decision is stored as he made it through his selection via the buttons/click area. All services and functions requiring consent, to which the user agrees, are active and can be used. The services and functions that cannot be used without consent are not integrated into the website.

- The selection of "reject and save all" means that this decision is not saved. The user's decision is therefore that he does not consent to anything that requires his consent and has the consequence that all services and functions requiring consent do not work for this user. The banner is hidden.

- Choosing "Accept and save all" means that all services and functions requiring consent are "sharp". This means that you have given consent in accordance with the GDPR and also agree to the use of the terminal device. The banner is then hidden. In the course of his further use of the websites, the user can actively cause the blocking of the consent banner by revoking a given consent or making up for an initially unnecessary consent. To do this, he clicks on the link "Consent Settings". The consent banner appears again. Your consent can therefore be revoked at any time with effect for the future. A later revocation no longer affects the legality of the access or the storage of information that took place until the revocation.

6.3 All three decisions of the user mentioned ("make a selection and save", "reject and save all" or "accept and save everything") are stored via the browser of the user's end device in the so-called "local storage" on the user's end device. The storage there is permanent. The information is stored in the object "wbkConsent". This technique is not a cookie in the true sense. The information in the "wbkConsent" also has no personal reference, i.e. the user is not recognized when he calls up the WBK user's website again. The selection decision for consent is not stored on our server. This use of the user's terminal device is without consent according to § 25 para. 2 no. 2 TTDSG (user request).

 

7 Technical measures

7.1 SSL/TSL

For security reasons and to protect the transmission of confidential content, for example by means of requests that you send to us as the site operator, our websites are protected with an active SSL or SSL content. TLS encryption provided. An encrypted connection can be recognized by the fact that the address line of the browser changes from "http://" to "https://" and a lock symbol can be seen in the browser line. As a result of this encryption, data that you transmit to us cannot be read by third parties.

7.2 End-to-end communication

If you contact us using an e-mail address provided on our website, the transport of the content of the e-mail to us is not end-to-end encrypted. This means that the e-mails are usually encrypted during transport via the e-mail providers involved, but are unencrypted on the servers there. The contact to us via the contact form provided is therefore technically a secure communication.

7.3 Video integration

If you can view videos on our websites that are marked as external links to third-party websites, this is done exclusively via the technique of linking to the respective website referred to or to a third-party video portal. There, these videos are stored under the data protection responsibility of the respective third-party provider. The respective website or the respective video portal is therefore not directly embedded in our websites. This ensures that the user's information is not transmitted to the portal when the website on which the video is integrated is loaded. It is also guaranteed that cookies or similar technologies for tracking user activities of the portals or the advertising partners of these portals cannot be placed on your end device via the mere linking. Only after you deliberately click on the video preview image is a connection to the third-party portal established and the associated data processing is triggered. However, this and the possible data processing of your user data on the linked portal is done exclusively by your wish to see the video there. The data processing triggered by this is outside our sphere of influence and is subject to the responsibility of these third-party providers, who provide more or less detailed information about their data processing. If you do not agree with the data processing by the third-party provider, please do not click on the video preview image.

 

B Special information Special right to object pursuant to Art. 21 (1) GDPR

You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data based on Article 6 (1) (f) GDPR (processing to safeguard our legitimate interests or those of a third party) in accordance with Art. 21 (1) GDPR. You can address the objection to the address in section 1.1. We will then no longer process the personal data, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims. In the event of your objection, you must explain to us your possible existing interests (your "special situation") in detail so that we can carry out a new balance of interests. If our interests in further storage do not prevail, the personal data stored in the course of contacting us will be deleted. In the event that these still prevail, the data processing will continue by us.

 

 

 

Home