Datenschutzerklärung - Photographer Berber Knol

WHY DOES THIS PRIVACY POLICY EXIST?

Welcome to my website! Here you will find all information about my work as a photographer and my services. Feel free to take a look around, write me a message using the contact form or send me an email.

When you visit my website, various personal data is processed. A law that applies to me – the General Data Protection Regulation or GDPR for short – contains certain requirements. In addition, the so-called Telemedia Telecommunications Data Protection Act (TTDSG) applies. For example, I have to inform you about certain things at the time of collecting your personal data. And that’s exactly what this privacy policy is about!

WHAT IS PERSONAL DATA?

Data protection is all about personal data. This includes all information that identifies or makes identifiable a person. It doesn’t matter who can make the connection. It’s enough that it’s possible. The term includes name, address, profession, email address, health status, income, marital status, telephone number and usage data such as the IP address. So you can see that almost all data can actually be personal – even if it is only technical information.

WHEN DO YOU TALK ABOUT PROCESSING?

You can do a lot with personal data. This means everything from collecting to deleting. They can be recorded, organized, arranged, stored, adapted, changed, read, queried, used, disclosed, transmitted or made available. Processing actually always takes place.

Who is responsible for data processing on the website?

The person responsible within the meaning of data protection regulations is [Berber Knol, Siemensstrasse 18/2, 12459 Berlin. I do not have to appoint a data protection officer. However, you are welcome to contact me directly at any time if you have any questions about the processing of your personal data to my email address: hello@berberknolphotography.com.

WHAT DATA IS PROCESSED WHEN SURFING ON THE WEBSITE?

Just when you access the website, your computer sends data. This is the only way to establish a connection with your device. During this process, the following (personal) data is processed: date and time the website was accessed, name of the subpage accessed, anonymized IP address, referrer URL (origin URL), operating system used, host name of the accessing computer as well as product and version information your browser. The data processing that takes place is permitted by law on the basis of legitimate interest (Art. 6 Para. 1 lit. f) GDPR). I would like to present myself as a photographer and show my pictures. A separate website is necessary for this – because customers today only look for services on the Internet. The processing of the data mentioned takes place automatically when the website is accessed and is also necessary for this. The usage data is deleted after 60 days.

WE USE COOKIES

The websites use so-called cookies in several places. They serve to make my offering more user-friendly, effective and secure. A cookie is text information that our website places via the web browser on the device you are using. Most of the cookies I use are so-called “session cookies”. They will be automatically deleted at the end of your visit.

The legal basis is Article 6 Paragraph 1 Letter f) GDPR. My legitimate interest arises from the fact that with the aforementioned cookies we only make it easier for you to access the site, we do not collect any tracking data and therefore there is no interference with your personal rights and fundamental freedoms.

You can exclude the acceptance of cookies in your web browser. However, this can lead to impairments in functionality. These cookies are only valid for the duration of your browser session and are deleted when you end your visit to our site.

I use cookies from the following third parties:

Cookie Consent Tool from Real Cookie Banner

To obtain your consent, I use Real Cookie Banner (https://devowl.io/de/wordpress-real-cookie-banner/), a product of devowl.io GmbH, Tannet 12, 94539 Grafling, Germany. If you give your consent, Real Cookie Banner will automatically log the following data with the operator (https://devowl.io/de/datenschutzerklaerung/):

The end user’s IP number in anonymized form (the last digits are set to ‘0’).
Date and time of consent.
User agent of the end user’s browser.
The URL from which the additional timing was sent.
An anonymous, random and encrypted key.
The end user’s consent status, which serves as evidence of consent.

The data stored is used to ensure that web analytics services only collect data with your consent and to document this consent and to create and display cookie declarations for end users.

The key and consent status are also stored in the end user’s browser in the us_cookie_notice_accepted cookie, allowing the website to automatically read and follow the end user’s consent for all subsequent page requests and future end user sessions for up to 12 months.

The legal basis for the processing of your data is Article 6 Paragraph 1 Letters c) and f) GDPR, because I am legally obliged to be able to prove consent and my legitimate interest arises from the fact that I can only obtain the necessary consent in this way can.

WHAT HAPPENS WHEN YOU CONTACT US?

I have integrated a contact form into the website so that you can write your message directly in a field and send it to me. Please enter the requested information (e.g. email address, telephone number). You can also write me an email directly. You can find the address in several places on the website.

If the request develops into a contractual relationship through the initiation of a contract or if the request relates to an existing contractual relationship, the legal basis is Art. 6 Para. 1 lit. b) GDPR, since the data is stored for the fulfillment of a pre-contractual or contractual obligation necessary is. I also have a legitimate interest in accordance with Article 6 Paragraph 1 Letter f) GDPR in processing the data for the purpose of communicating and answering inquiries. I may use the information from your contact request to contact you and send you an offer. The information you provide (in particular your name and email address) is necessary so that I can answer your request and we can conclude a contract.

The data will be deleted when the purpose of storage no longer applies, i.e. after your email/contact form request has been answered or when the matter associated with the request has been finally clarified. If there is an existing contractual relationship or a contractual relationship resulting from the request, deletion will take place after the statutory retention periods have expired.

HOW DOES CONTACTING VIA WHATSAPP WORK?

I have decided to enable contact via the messenger service WhatsApp. There is a WhatsApp button on the website that you can use to contact me directly. If you open my website via your PC browser, you can use the chat with the “WhatsApp Web” extension. If you visit my site via a mobile device (such as your smartphone or tablet), you will be redirected directly to WhatsApp Messenger. So you can write me a message immediately. Your data is synchronized with a WhatsApp server.

The messenger service is offered by WhatsApp Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. This applies in any case if the user is in the European Union. The responsible provider is Meta Platforms, Inc 1 Hacker Way, Menlo Park, California 94025 USA. Therefore, it cannot be ruled out that personal data may be transferred to the USA when using WhatsApp. The provider has submitted to the EU-US Data Framework (adequacy decision, Art. 45 GDPR) and thus ensures compliance with all technical and organizational measures to ensure a high level of data protection. The use of WhatsApp, the data processing that takes place and the transmission of data in the USA is based on your consent (Art. 6 Para. 1 a). You grant this by scanning the code and writing your message to me. I save the resulting chat for the duration of our collaboration. If you do not instruct me, I will of course delete your messages and personal data directly.

I have no influence on the extent of data processing by the messenger service provider and can only refer you to their data protection declaration. You can find further information about data protection at Whatsapp here: https://www.whatsapp.com/legal/

WHAT IS THIS META PIXEL?

I use the so-called Meta Pixel for targeted advertising and efficient measurement of my advertising campaigns. This transmits the data generated when surfing the website (e.g. subpages clicked on, content and advertisements) to Facebook Ireland Ltd. For data processing.

When using meta services in the European Union, Facebook Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland is generally responsible, but they forward the data to Meta Platforms, Inc 1 Hacker Way, Menlo Park, California 94025 USA. There they are compared with the data from your Facebook or Instagram account and enriched with data that already exists on Facebook or Instagram. The Meta Pixel means that you only see advertising tailored to you in your Facebook or Instagram profile. Meta itself uses the resulting data to analyze your user behavior and the effectiveness of advertisements. Data about your visit to the website is transmitted to Meta even if you do not have a Facebook or Instagram profile or are not currently logged in there.

The provider has submitted to the EU-US Data Framework (adequacy decision, Art. 45 GDPR) and thus ensures compliance with all technical and organizational measures to ensure a high level of data protection. The use of Meta, the data processing that takes place and the transmission of data in the USA is based on your consent (Art. 6 Para. 1 a). When you access the website, you will be asked to provide a corresponding declaration (in electronic form). You can allow or reject data processing via the Meta Pixel. The data transmitted to Meta will be deleted immediately after the comparison. I do not save any data during this process and cannot view it.

For further information on how Facebook Ireland processes personal data, including the legal basis on which Facebook Ireland relies and ways to exercise data subject rights against Facebook Ireland, please see Facebook Ireland’s Data Policy at https://www. facebook.com/about/privacy.

WHAT DATA IS PROCESSED BY GOOGLE ANALYTICS?

I have integrated the Google Analytics tool on the website (offered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). Data is transferred from Google Ireland to Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, to which I always draw attention. Further information about whether and what data is collected by Google through the use of these services can be found in Google’s privacy policy.

Cookies are also set. IP address, screen size, browser information, location (country), preferred language setting, sub-pages visited and date and time of access are processed.

The admissibility of this processing depends on your consent (Art. 6 Para. 1 a) GDPR). You can agree or reject the analysis of your user behavior when you access the website by clicking on a box. Providing your personal data is of course voluntary. I save the results for [please enter duration].

The information generated by the cookies about your use of this website is usually transferred to a Google LLC server in the USA and stored there. However, due to activated IP anonymization on this website, your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.

HOW DOES GOOGLE TAG MANAGER WORK?

I use Google Tag Manager on my website. With this I can integrate code sections from various tools and manage them centrally via a user interface. In addition to Google products, Google Tag Manager can also be used to manage tools from other providers – so it is very practical. Google Tag Manager triggers other tags, which in turn may collect data. However, Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, it remains in effect for all tracking tags if they are implemented with the Google Tag Manager.

Legal basis for the collection and

d Storage of the data is Art. 6 Paragraph 1 Sentence 1 Letter a) GDPR. I do not store any personal data myself.

Where is the website hosted and who has access?

My website is hosted in a data center. This belongs to www.webhoster.de. I have concluded an order processing contract with the operator of the data center and obliged them to comply with certain data protection regulations. In addition, the website is maintained by a service provider who may be able to view personal data during maintenance. This is www. webhoster.de. Here too, I have concluded a contract for order processing.

Otherwise, only I have access to the personal data processed via the website and incoming inquiries. If we conclude a contract and documents relevant to tax law are created, knowledge by other people cannot be ruled out. This can in particular be a tax advisor or lawyer.

MY INSTAGRAM PAGE

For the purpose of exchanging ideas with you, promoting new services and providing general information about my company, I operate a page on the “Instagram” platform. This service is offered on the technical platform and using the services of Meta Platforms, Inc 1 Hacker Way, Menlo Park, California 94025 USA (hereinafter “Instagram”).

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland is responsible for data processing of persons living outside the United States.

If you access the page via our website using the Instagram symbol and are logged into your Instagram account at the same time, Instagram can directly assign the visit to our website to your Instagram account.

If you do not want Instagram to assign your data to your account, you must log out of Instagram before visiting my website.

If you access interactive functions of the site (like, comment, share, message, etc.), an Instagram login mask appears. After you have logged in, you will again be recognizable to Instagram as a specific user. For information about how to manage or delete existing information, see Instagram’s data policy at https://help.instagram.com/519522125107875/?maybe_redirect_pol=0.

As the operator of my Instagram page, I do not collect or process any data beyond that. You can find further information about Instagram and other social networks and how you can protect your data within the privacy settings at youngdata.de.

The legal basis for the use of the Instagram fan page is Article 6 Paragraph 1 Letter f) GDPR. My legitimate interest is based on the fact that I enable customers to communicate directly with my company via this social media service, including complaints. The embedded images from Instagram are displayed based on your express consent in accordance with Article 6 Paragraph 1 Sentence 1 Letter a) GDPR. The provider has submitted to the EU-US Data Framework (adequacy decision, Art. 45 GDPR) and thus ensures compliance with all technical and organizational measures to ensure a high level of data protection.

WHAT RIGHTS DO YOU HAVE?

When it comes to privacy, you have quite a few rights. There are some articles in the GDPR that only deal with this. Here you have an overview of your rights:

a. Right to object

If we process your data to protect legitimate interests (Art. 6 Para. 1 lit. f) GDPR), you can do so

You may object to this for reasons arising from your particular situation. We will then no longer process your personal data unless we can demonstrate compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims.

In the event of an objection to data processing for the purpose of direct advertising, processing for this purpose will no longer take place.

b. right of providing information

You have the right to request confirmation from us as to whether we are processing personal data concerning you and, if so, a right to information about the personal data and related information in accordance with Article 15 GDPR.

c. Right to rectification

You have the right to immediately request that we correct or complete incorrect or incomplete personal data concerning you in accordance with Art. 16 GDPR.

d. Right to deletion

You have the right to request that we immediately delete personal data relating to you and we are obliged to delete it immediately if one of the reasons listed in Article 17 GDPR applies.

e. Right to restriction of processing

You have the right to request that we restrict personal data concerning you if one of the conditions listed in Article 18 GDPR is met.

f. Right to data portability

You have the right to receive the personal data relating to you that you have provided to us in a structured, common and machine-readable format, and you have the right to request that we transmit the data to another person responsible, to the extent that this is technically feasible .

You have the right to complain to a data protection supervisory authority at any time.

State Commissioner for Data Protection and Freedom of Information (Landesbeauftragte für Datenschutz und Informationsfreiheit)
Alt-Moabit 59-61
10555 Berlin
Eingang: Alt-Moabit 60

Tel.: +49 30 13889-0
Fax: +49 30 2155050
mailbox@datenschutz-berlin.de

berber_knol